fatality 2018 hackvshack[.]net[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

fatality 2018 hackvshack.net.dll
Size

1.0MB
MD5

ff88917a6b3a73597bc78031f7b7896a
SHA1

379dc00f50f4f07c2b8a889cf7b4d055561b2df9
SHA256

7a7fe1444bdd8e408113fb858140aced4acf41e243161ade20f48fa534744bc0
SHA512

6013bffbdb76b02435c8b0ce8198629521dce980de812a0de83f91294a7ec3646f721fba4a2717e8bb918e85de8c38ffe6e9c9871fe1430eb4dbed68b8cf6757
SSDEEP

24576:JVQTfrs60PdN7wMNUBJ7Z/eW4B+nUMhRhvs+OQ3IYoKKz22632fsU0mhe4t57XMf:MUcvsDWizKWtme4zCpPKmaV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fatality 2018 hackvshack.net.dll

Files

fatality 2018 hackvshack.net.dll
.dll windows:6 windows x86 arch:x86

d5a217f5d5200f842533d7fec98abbf5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Users\Adm1nko\Source\internal_hvh\Release\fatality.pdb

Imports

kernel32

GetCurrentProcessId
QueryPerformanceCounter
GetCurrentThreadId
IsDebuggerPresent
TerminateProcess
GetSystemTimeAsFileTime
InitializeSListHead
EnterCriticalSection
LoadResource
LockResource
FindResourceA
SizeofResource
GetProcAddress
GetModuleHandleA
MulDiv
VirtualProtect
Beep
CreateThread
Sleep
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
CloseHandle

user32

FlashWindowEx
CallWindowProcW
FindWindowA
SetWindowLongW
ScreenToClient
GetAsyncKeyState
GetCursorPos

gdi32

AddFontResourceExA
CreateFontA
SelectObject
CreateDIBSection
CreateCompatibleDC
GetDeviceCaps
DeleteDC
GetTextExtentPoint32W
SetTextColor
SetBkColor
DeleteObject
SetMapMode
SetTextAlign
ExtTextOutW

msvcp140

?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sungetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?putback@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?unget@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?always_noconv@codecvt_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
_Cnd_signal
_Mtx_current_owns
?_Throw_Cpp_error@std@@YAXH@Z
?_Throw_C_error@std@@YAXH@Z
_Cnd_timedwait
_Mtx_lock
_Xtime_get_ticks
_Mtx_unlock
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
?copyfmt@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEAAV12@ABV12@@Z
_Cnd_init_in_situ
_Mtx_destroy_in_situ
_Mtx_init_in_situ
_Cnd_destroy_in_situ
?_Xlength_error@std@@YAXPBD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Xbad_function_call@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?uncaught_exception@std@@YA_NXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

d3dx9_43

D3DXMatrixTranslation
D3DXMatrixMultiply
D3DXCreateSprite
D3DXCreateTextureFromFileInMemory
D3DXMatrixScaling
D3DXMatrixRotationYawPitchRoll

winmm

PlaySoundA

vcruntime140

_purecall
__std_exception_copy
__std_exception_destroy
__std_type_info_destroy_list
memset
_except_handler4_common
_CxxThrowException
strstr
__std_terminate
__CxxFrameHandler3
memchr
memcpy
memmove

api-ms-win-crt-stdio-l1-1-0

fgetpos
setvbuf
ungetc
fsetpos
fputc
fflush
fclose
fread
fgetc
fwrite
_fseeki64
__stdio_common_vsprintf_s
_get_stream_buffer_pointers
__stdio_common_vsprintf

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free

api-ms-win-crt-math-l1-1-0

_libm_sse2_sqrt_precise
_libm_sse2_sin_precise
ceil
_dsign
roundf
_dtest
_libm_sse2_pow_precise
_libm_sse2_cos_precise
_except1
floor
fmaxf

api-ms-win-crt-convert-l1-1-0

strtoul
strtoull
strtod
strtoll

api-ms-win-crt-filesystem-l1-1-0

_lock_file
_unlock_file
remove

api-ms-win-crt-locale-l1-1-0

localeconv

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_crt_atexit
_errno
_execute_onexit_table
_cexit
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_invalid_parameter_noinfo_noreturn
_register_onexit_function
terminate
_seh_filter_dll

api-ms-win-crt-string-l1-1-0

strcat_s
isdigit
strcpy_s
toupper
tolower

api-ms-win-crt-utility-l1-1-0

rand

Sections

.text
Size: 644KB - Virtual size: 644KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 304KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5a217f5d5200f842533d7fec98abbf5

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msvcp140

d3dx9_43

winmm

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-utility-l1-1-0

Sections

.text Size: 644KB - Virtual size: 644KB

.rdata Size: 85KB - Virtual size: 84KB

.data Size: 304KB - Virtual size: 358KB

.reloc Size: 34KB - Virtual size: 34KB

.text
Size: 644KB - Virtual size: 644KB

.rdata
Size: 85KB - Virtual size: 84KB

.data
Size: 304KB - Virtual size: 358KB

.reloc
Size: 34KB - Virtual size: 34KB