sonic2app[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

sonic2app.exe
Size

20.3MB
MD5

c1a7e9ecf5c55501faab1fc925f2bca4
SHA1

d9ce3e466881dc91637e3162aaca11ceb1a096c4
SHA256

543d50b4180d0a1119d102f174a2fb66394d284d565a55b2741f0bb01bce993a
SHA512

62a48e45ab492708a966c520aef2acecce786f4269d1716bb07183c4ddb0e3c1c018d00c293e57d7ad8b8c96b5397792acc0f9e46bd0d9902e941513508e47a3
SSDEEP

393216:TPX1pwLyTZtGKef4/inKZ8WoQChyrn7Hrn77Q+ZNFSjqjGRW:TP4OTFef4/lZ8WoQ5rn7Hrn77QUSjYGE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
sonic2app.exe

Files

sonic2app.exe
.exe windows:5 windows x86 arch:x86

18bbd334001f95cfbe368947d685086d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\SonicAd2\SonicAdventure2_GC\sonic2\bin\Win32\Release\sonic2app.pdb

Imports

d3d9

Direct3DCreate9

d3dx9_42

D3DXSaveSurfaceToFileA
D3DXSaveTextureToFileA
D3DXFilterTexture
D3DXLoadSurfaceFromSurface
D3DXCreateCubeTextureFromFileInMemoryEx
D3DXCreateTexture
D3DXGetShaderConstantTable
D3DXCreateVolumeTexture
D3DXCreateVolumeTextureFromFileInMemoryEx
D3DXCreateCubeTexture
D3DXCreateTextureFromFileInMemoryEx

steam_api

SteamUserStats
SteamAPI_RegisterCallResult
SteamAPI_UnregisterCallResult
SteamFriends
SteamAPI_UnregisterCallback
SteamUtils
SteamAPI_RegisterCallback
SteamUser
SteamAPI_Shutdown
SteamAPI_RunCallbacks
SteamAPI_Init
SteamApps

steammetricssdk

?Initialize@MetricsAgent@SteamMetricsSDK@@QAEXPBDH0@Z
?GetInstance@MetricsAgent@SteamMetricsSDK@@SAPAV12@XZ
?LogEvent@MetricsAgent@SteamMetricsSDK@@QAEXPBD00@Z
?CleanInstance@MetricsAgent@SteamMetricsSDK@@SAXXZ

kernel32

GetFileAttributesA
MoveFileA
SetFileTime
SuspendThread
CreateThread
ResumeThread
GetProcessAffinityMask
SetThreadIdealProcessor
SetThreadPriority
WaitForSingleObject
SetEnvironmentVariableA
CompareStringW
CreateMutexW
lstrcmpA
SetThreadExecutionState
GetLastError
CloseHandle
LocalUnlock
GlobalLock
GetModuleHandleW
GlobalAlloc
GetVersionExW
MulDiv
GetModuleFileNameW
GlobalUnlock
LocalLock
LocalAlloc
LocalFree
CreateDirectoryA
GetCurrentDirectoryA
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
CompareStringA
GetProcessHeap
SetEndOfFile
GetTimeZoneInformation
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
GetLocaleInfoW
SetStdHandle
CreateFileA
InitializeCriticalSectionAndSpinCount
CreateEventA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
CreateEventW
LeaveCriticalSection
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
VirtualAlloc
GetCurrentProcessId
GetTickCount
VirtualFree
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetFilePointer
GetModuleFileNameA
WriteFile
ReadFile
GetFileType
GetStdHandle
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
ExitProcess
HeapSize
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
LCMapStringW
LCMapStringA
GetCPInfo
RtlUnwind
RaiseException
GetSystemTimeAsFileTime
HeapReAlloc
HeapAlloc
HeapFree
GetStartupInfoA
GetFileSize
GetFullPathNameA
SetEvent
GetThreadPriority
SetThreadAffinityMask
ResetEvent
GetExitCodeThread
GetSystemInfo
GetModuleHandleA
EnterCriticalSection
ExitThread
CreateFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
DeleteCriticalSection
InitializeCriticalSection
MultiByteToWideChar
InterlockedExchange
TerminateProcess
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetUserDefaultLCID
VirtualQuery
FindFirstFileA
FindClose
FindNextFileA
Sleep
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
GetCurrentProcess

user32

DestroyWindow
CloseClipboard
GetSystemMenu
SetTimer
GetWindowRect
FillRect
DrawTextW
KillTimer
GetLastActivePopup
GetParent
MessageBeep
DrawIcon
GetClientRect
BeginPaint
WaitMessage
IsDialogMessageW
CreateDialogIndirectParamW
GetAsyncKeyState
SetRect
GetWindowTextW
GetClassNameW
EnableMenuItem
EmptyClipboard
GetDlgItem
SetWindowLongW
RedrawWindow
GetSysColor
SetWindowPos
LoadStringW
EndPaint
GetActiveWindow
IsWindow
OpenClipboard
SendMessageW
EnableWindow
SetClipboardData
SetWindowTextW
DestroyIcon
WinHelpW
GetDialogBaseUnits
GetWindow
MoveWindow
GetMessageW
PostQuitMessage
PostMessageW
SetForegroundWindow
LoadCursorW
SetFocus
TranslateMessage
ShowCursor
MessageBoxA
GetWindowLongW
SystemParametersInfoW
PeekMessageW
ShowWindow
CreateWindowExW
RegisterClassW
GetSystemMetrics
DefWindowProcW
DispatchMessageW
wvsprintfA
GetCursorPos
CheckDlgButton
LoadIconW
GetKeyState

gdi32

SetTextColor
DeleteDC
CreateFontIndirectW
SetBkColor
CreateDCW
DeleteObject
SelectObject
CreateSolidBrush
GetTextExtentPoint32W

advapi32

RegSetValueExW
RegCloseKey
RegCreateKeyExW

shell32

ShellExecuteW

shlwapi

PathFileExistsA

dsound

ord11

xinput1_3

ord4
ord3
ord2

dinput8

DirectInput8Create

ole32

CoInitialize
CoUninitialize
CoSetProxyBlanket
CoCreateInstance
CoInitializeEx

oleaut32

SysFreeString
SysAllocString

winmm

timeGetTime
timeSetEvent
timeKillEvent

Exports

Exports

texlist_stg34_water2

Sections

.text
Size: 4.4MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

PSFD00
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 652KB - Virtual size: 652KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14.2MB - Virtual size: 29.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 399KB - Virtual size: 399KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 632KB - Virtual size: 631KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.extra
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_DISCARDABLE

Sharing

General

Malware Config

Signatures

Files

18bbd334001f95cfbe368947d685086d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

d3d9

d3dx9_42

steam_api

steammetricssdk

kernel32

user32

gdi32

advapi32

shell32

shlwapi

dsound

xinput1_3

dinput8

ole32

oleaut32

winmm

Exports

Exports

Sections

.text Size: 4.4MB - Virtual size: 4.4MB

PSFD00 Size: 7KB - Virtual size: 7KB

.rdata Size: 652KB - Virtual size: 652KB

.data Size: 14.2MB - Virtual size: 29.3MB

.rsrc Size: 399KB - Virtual size: 399KB

.reloc Size: 632KB - Virtual size: 631KB

.extra Size: 5KB - Virtual size: 8KB

.text
Size: 4.4MB - Virtual size: 4.4MB

PSFD00
Size: 7KB - Virtual size: 7KB

.rdata
Size: 652KB - Virtual size: 652KB

.data
Size: 14.2MB - Virtual size: 29.3MB

.rsrc
Size: 399KB - Virtual size: 399KB

.reloc
Size: 632KB - Virtual size: 631KB

.extra
Size: 5KB - Virtual size: 8KB