A Lose Hero in the Castle of the Succubi_Patch_manual[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

A Lose Hero in the Castle of the Succubi_Patch_manual.exe
Size

129.4MB
MD5

6532ce9dbbe3c87bebd0d349dcab0454
SHA1

74bd8f02aa1a3fe2f964b9d1a83b5f494d7b605a
SHA256

833dce15239866cbc15b48d9a7a5fc0536f746d24faaa1af01f51f0cb489be47
SHA512

5d6d0fe909e444632fffe9834d00e557acba271a74f02f217b6c15e76a086d443f034c966df84101c894d5f4fb6554cbcc897c4b7d7b3f071407dfd9ebc4cd17
SSDEEP

3145728:6cprCbmplmomM3FF8XnUnkzXFRJUoWRVz1pOInxuD1JkcrczQHqM2S:JpObgmM0X6k7Cjz1pOdJkcIeZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
A Lose Hero in the Castle of the Succubi_Patch_manual.exe

Files

A Lose Hero in the Castle of the Succubi_Patch_manual.exe
.exe windows:5 windows x86 arch:x86

Password: infected

a318bcc91048b573b7aba7eb19f6dd2b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

shlwapi

PathIsDirectoryA
PathAddBackslashA

imagehlp

MakeSureDirectoryPathExists

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

kernel32

IsDBCSLeadByteEx
FreeLibrary
GetACP
GetModuleFileNameA
LoadLibraryA
GetFileTime
OpenProcess
CloseHandle
GetProcAddress
GetModuleHandleA
GetPrivateProfileStringA
SetFileTime
DeleteFileA
SetFileAttributesA
MoveFileA
SetCurrentDirectoryA
GetSystemDirectoryA
GetWindowsDirectoryA
WaitForSingleObject
GetFileSize
SetFilePointer
GetLastError
ReadFile
WriteFile
CreateFileA
DuplicateHandle
GetCurrentProcess
GlobalFree
GlobalAlloc
LCMapStringA
FindClose
FindFirstFileA
GetVersionExA
HeapAlloc
HeapFree
HeapReAlloc
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetCPInfo
VirtualAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
LCMapStringW
WriteConsoleA
SetStdHandle
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RaiseException
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
Sleep
ExitProcess
ExitThread
GetCurrentThreadId
CreateThread
GetCommandLineA
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapSize
GetStdHandle
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount

user32

EnableWindow
IsWindowEnabled
LoadIconA
SetClassLongA
GetDlgItem
GetWindowTextA
DialogBoxParamA
EndDialog
GetSystemMetrics
ShowWindow
SetWindowPos
SendDlgItemMessageA
SetWindowTextA
PostMessageA
FindWindowA
MessageBoxA
LoadStringA
SendMessageA
GetDesktopWindow
GetWindowRect

gdi32

DeleteObject
CreateFontIndirectA

advapi32

RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

SHGetPathFromIDListA
SHGetMalloc
SHBrowseForFolderA
SHGetSpecialFolderLocation
ShellExecuteA

ole32

CoTaskMemFree

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

a318bcc91048b573b7aba7eb19f6dd2b

Headers

DLL Characteristics

File Characteristics

Imports

winmm

shlwapi

imagehlp

version

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 131KB - Virtual size: 131KB

.rdata Size: 29KB - Virtual size: 28KB

.data Size: 6KB - Virtual size: 18KB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 131KB - Virtual size: 131KB

.rdata
Size: 29KB - Virtual size: 28KB

.data
Size: 6KB - Virtual size: 18KB

.rsrc
Size: 32KB - Virtual size: 32KB