Crazy Chicken Jewel of Darkness[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

Crazy Chicken Jewel of Darkness.rar
Size

15.4MB
MD5

93ec969019d5e487400adcc89863e991
SHA1

7098007832fc95ca5e45f164433f9c1eda61a254
SHA256

b79ef072478ee8c61ec2625ea19ed78394a0d6d4bc1c3764d4a91fba051fa73c
SHA512

d7a1f389a307e4ad06074a0bc311194e74a730a3b011dac015a023e7042d53b91da727520d635e67f26cb02f17dd169de83f3d8a25108deeccf6ff55637a1baa
SSDEEP

393216:1yJJkjlk0cBrJkbvnLtt0I22U9H0pyEamTxx3NMZDvHfB1qfUw+Zbv:1y7k7WuNtLXemTf3NMZD/zZbv

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Crazy Chicken Jewel of Darkness/Freeverb2.dll
unpack001/Crazy Chicken Jewel of Darkness/SkalePlayer.dll
unpack001/Crazy Chicken Jewel of Darkness/mda Image.dll
unpack001/Crazy Chicken Jewel of Darkness/play.exe

Files

Crazy Chicken Jewel of Darkness.rar
.rar
Crazy Chicken Jewel of Darkness/00_Levels.lp
Crazy Chicken Jewel of Darkness/Distr.stg
Crazy Chicken Jewel of Darkness/Freeverb2.dll
.dll windows:4 windows x86 arch:x86

0a400c7d5203058f55ac6ca899e20f87

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedIncrement
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
HeapFree
RaiseException
HeapAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
InterlockedDecrement
RtlUnwind
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetFilePointer
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
CloseHandle

Exports

Exports

main

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Crazy Chicken Jewel of Darkness/SkalePlayer.dll
.dll windows:4 windows x86 arch:x86

a9ac22b50cd3969ef1aad49ad8ffbc84

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Code\Skale\Sdk\SkalePlayer\Release\SkalePlayer.pdb

Imports

winmm

waveOutGetNumDevs
waveOutGetDevCapsA
waveOutOpen
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
midiInClose
waveOutGetPosition
waveOutGetVolume
waveOutSetVolume
waveOutClose
timeGetTime
timeSetEvent
timeKillEvent
timeBeginPeriod
timeEndPeriod
midiOutShortMsg
midiOutOpen
midiOutGetDevCapsA
midiOutClose
midiOutGetNumDevs
midiInOpen
midiInStart
midiInGetDevCapsA
midiInStop
midiInReset
midiInGetNumDevs

dsound

ord2
ord1

kernel32

CreateEventA
SetEvent
GetTickCount
Sleep
GetProcAddress
LoadLibraryA
FreeLibrary
OpenFile
MultiByteToWideChar
RtlUnwind
RaiseException
GetCurrentThreadId
GetCommandLineA
GetVersionExA
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
GetModuleHandleA
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
SetUnhandledExceptionFilter
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
CloseHandle
ReadFile
SetFilePointer
FlushFileBuffers
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InterlockedExchange
VirtualQuery
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetStdHandle
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
CreateFileA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
GetSystemInfo
SetEndOfFile

user32

CharLowerBuffA

advapi32

RegOpenKeyA
RegOpenKeyExA
RegEnumKeyA
RegCloseKey
RegQueryValueExA

ole32

CoInitialize
CLSIDFromString
CoCreateInstance

Exports

Exports

?GetSkalePlayer@ISkalePlayer@@SAPAV1@XZ

Sections

.text
Size: 268KB - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 988KB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Crazy Chicken Jewel of Darkness/mda Image.dll
.dll windows:4 windows x86 arch:x86

2c037513bd81934aaa82aca4853fc9db

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualFree
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
HeapFree
RaiseException
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
HeapDestroy
HeapCreate
RtlUnwind
WriteFile
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
SetFilePointer
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle

Exports

Exports

main

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Crazy Chicken Jewel of Darkness/mooh.stg
Crazy Chicken Jewel of Darkness/play.exe
.exe windows:4 windows x86 arch:x86

9c9c69f4ab5577e95b56253ca89ddcda

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
SetBkMode
GetObjectA
CreateCompatibleDC
SelectObject
SelectPalette
RealizePalette
BitBlt
DeleteDC
CreatePalette
CreateDIBitmap
DeleteObject
CreateDIBSection

shell32

SHGetFolderPathA
ShellExecuteA

winmm

joyGetNumDevs
joyGetDevCapsA
joyGetPos
timeEndPeriod
timeGetTime
timeBeginPeriod

comctl32

ord17
PropertySheetA

kernel32

Sleep
GetModuleHandleA
SetThreadLocale
UnlockFile
GetCurrentProcess
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetFileAttributesA
SetCurrentDirectoryA
GetCurrentDirectoryA
ReadFile
GetConsoleMode
LCMapStringW
MultiByteToWideChar
LCMapStringA
VirtualAlloc
FlushInstructionCache
HeapSize
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcessId
VirtualFree
HeapCreate
HeapDestroy
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
IsDebuggerPresent
TerminateProcess
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetDateFormatA
GetTimeFormatA
GetTimeZoneInformation
GetSystemTimeAsFileTime
FlushFileBuffers
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
MoveFileA
SetStdHandle
GetFileType
PeekNamedPipe
GetFileInformationByHandle
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
ExitProcess
SetConsoleCtrlHandler
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapReAlloc
CreateThread
FindResourceA
LoadResource
GetCurrentThreadId
LockResource
FreeResource
LockFile
LockFileEx
GetTempPathA
GetSystemTime
DeleteFileA
RemoveDirectoryA
SetFileAttributesA
ExitThread
GetStartupInfoA
SetEnvironmentVariableW
lstrlenA
FreeLibrary
GetCommandLineA
CreateProcessA
CreateDirectoryA
GetProcAddress
LoadLibraryA
GetModuleFileNameA
CloseHandle
CreateFileA
WaitForSingleObject
SetEvent
GetCurrentThread
TerminateThread
CreateEventA
SetThreadPriority
QueryPerformanceCounter
GetTickCount
QueryPerformanceFrequency
GetFullPathNameA
InterlockedDecrement
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
FormatMessageA
GetLastError
LocalFree
OutputDebugStringA
FindFirstFileA
FindClose
GetConsoleCP
GetConsoleOutputCP
GetVersionExA
SetEndOfFile
LoadLibraryExA
GetProcessTimes
GetExitCodeProcess
GetEnvironmentVariableA
CreatePipe
FindNextFileA
DuplicateHandle
GetVersion
GetFileSize
SetFilePointer
MapViewOfFile
UnmapViewOfFile
FlushViewOfFile
CreateFileMappingA
RtlUnwind
RaiseException
HeapFree
HeapAlloc
GetProcessHeap
VirtualQuery

shlwapi

PathAppendA

user32

SetWindowPos
ClientToScreen
SetActiveWindow
ToAscii
EnumDisplaySettingsA
WaitMessage
GetKeyboardState
SetCursorPos
PostMessageA
FindWindowA
VkKeyScanA
IsDlgButtonChecked
MessageBoxA
CheckDlgButton
EnableWindow
SendDlgItemMessageA
GetDlgItem
GetWindowDC
ReleaseDC
InvalidateRect
GetParent
GetMenu
LoadStringA
DrawFrameControl
DrawTextA
GetDC
MapVirtualKeyA
GetKeyNameTextA
LoadIconA
RegisterClassA
AdjustWindowRectEx
CreateWindowExA
SetForegroundWindow
GetWindowLongA
PeekMessageA
DispatchMessageA
ShowWindow
CloseWindow
UnregisterClassA
MapWindowPoints
ClipCursor
IsWindow
GetSystemMetrics
LoadCursorA
SetCursor
SetCapture
ReleaseCapture
GetCursorPos
ScreenToClient
SendMessageA
BeginPaint
GetClientRect
EndPaint
SetWindowLongA
CallWindowProcA
DefWindowProcA
RegisterClassExA
CharLowerA
DrawFocusRect
SetFocus

ole32

OleDraw
OleSetContainedObject
CoCreateInstance
OleInitialize

oleaut32

GetErrorInfo
VariantClear
SysFreeString
SysAllocString

advapi32

RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExA
RegEnumKeyExA
RegCreateKeyExA
GetUserNameA
RegCloseKey

d3d8

Direct3DCreate8

dsound

ord1

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0a400c7d5203058f55ac6ca899e20f87

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 19KB

.reloc Size: 8KB - Virtual size: 5KB

a9ac22b50cd3969ef1aad49ad8ffbc84

Headers

File Characteristics

PDB Paths

Imports

winmm

dsound

kernel32

user32

advapi32

ole32

Exports

Exports

Sections

.text Size: 268KB - Virtual size: 266KB

.rdata Size: 44KB - Virtual size: 41KB

.data Size: 988KB - Virtual size: 6.4MB

.reloc Size: 40KB - Virtual size: 37KB

2c037513bd81934aaa82aca4853fc9db

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 53KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 15KB - Virtual size: 20KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 980B

.reloc Size: 5KB - Virtual size: 4KB

9c9c69f4ab5577e95b56253ca89ddcda

Headers

File Characteristics

Imports

gdi32

shell32

winmm

comctl32

kernel32

shlwapi

user32

ole32

oleaut32

advapi32

d3d8

dsound

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 192KB - Virtual size: 190KB

.data Size: 148KB - Virtual size: 177KB

.rsrc Size: 64KB - Virtual size: 64KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 19KB

.reloc
Size: 8KB - Virtual size: 5KB

.text
Size: 268KB - Virtual size: 266KB

.rdata
Size: 44KB - Virtual size: 41KB

.data
Size: 988KB - Virtual size: 6.4MB

.reloc
Size: 40KB - Virtual size: 37KB

.text
Size: 53KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 15KB - Virtual size: 20KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 980B

.reloc
Size: 5KB - Virtual size: 4KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 192KB - Virtual size: 190KB

.data
Size: 148KB - Virtual size: 177KB

.rsrc
Size: 64KB - Virtual size: 64KB