DDNet_translator_win64[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

DDNet_translator_win64.exe
Size

1.3MB
MD5

b206b9edff3bb6e53066e44bfa48f02c
SHA1

25706d652f36e146a1ec57fe1812551b38b83fae
SHA256

d43e7a62a2091de9fed18124c1f8ba23a8aa8f77276133e336910c2a200ff082
SHA512

26127f5c1dc124c3c07bbe329f9b68e7a476ea9295043bf2dc22c3a807c6614a5e3eb53872eb4403a2abedae2c49a5dd9588c42048c339c89c67af603cccdc4f
SSDEEP

24576:53p/lMHM85lm7+a1fHnZ6GyD9zkI5OWeEt8O1lrNZywFpk4fZ7CTRYs74F2eQoq:53Rs15lfqHZxyDTt8O14wfPZ7CTyJW5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DDNet_translator_win64.exe

Files

DDNet_translator_win64.exe
.exe windows:5 windows x86 arch:x86

756cc1c5d8ec550aa85fd275d43e486c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SwapBuffers

user32

FlashWindowEx
MessageBoxA

ws2_32

htons
select
__WSAFDIsSet
WSAGetLastError
freeaddrinfo
send
listen
ioctlsocket
closesocket
getaddrinfo
recv
connect
accept
recvfrom
sendto
socket
setsockopt
bind
WSAStartup
WSAStringToAddressA

shell32

ShellExecuteA

advapi32

CryptGenRandom
CryptAcquireContextA

opengl32

glColorPointer
wglGetCurrentContext
wglGetCurrentDC
wglMakeCurrent
glOrtho
glLoadIdentity
glMatrixMode
glTexCoordPointer
glVertexPointer
glReadPixels
glPixelStorei
glDepthMask
glAlphaFunc
glFinish
glDrawArrays
glClearColor
glClear
glGetIntegerv
glGenTextures
glTexImage2D
glDeleteTextures
glTexSubImage2D
glEnable
glBlendFunc
glDisable
glScissor
glBindTexture
glTexParameteri
glEnableClientState

glu32

gluBuild2DMipmaps

libopusfile-0

op_open_memory
op_channel_count
op_pcm_total
op_read

libcurl

curl_easy_escape
curl_free
curl_global_init
curl_global_cleanup
curl_easy_cleanup
curl_easy_perform
curl_easy_setopt
curl_easy_init

sdl

SDL_ShowCursor
SDL_QuitSubSystem
SDL_GetWMInfo
SDL_SetVideoMode
SDL_WM_IconifyWindow
SDL_ListModes
SDL_JoystickGetAxis
SDL_Init
SDL_JoystickOpen
SDL_JoystickNumAxes
SDL_JoystickClose
SDL_JoystickEventState
SDL_WM_SetCaption
SDL_GL_SetAttribute
SDL_EventState
SDL_GetVideoInfo
SDL_GetError
SDL_InitSubSystem
SDL_WasInit
SDL_Quit
SDL_GL_SwapBuffers
SDL_WarpMouse
SDL_GetMouseState
SDL_GetRelativeMouseState
SDL_WM_GrabInput
SDL_PollEvent
SDL_GetKeyState
SDL_EnableKeyRepeat
SDL_EnableUNICODE
SDL_CloseAudio
SDL_PauseAudio
SDL_OpenAudio
SDL_GetAppState

freetype

FT_Get_Next_Char
FT_Load_Glyph
FT_Get_First_Char
FT_Set_Pixel_Sizes
FT_Load_Char
FT_Get_Kerning
FT_Init_FreeType
FT_New_Face

kernel32

WriteConsoleW
LoadLibraryW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapReAlloc
GetStringTypeW
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetProcessHeap
SetEndOfFile
SetStdHandle
IsValidCodePage
GetOEMCP
GetACP
ReadFile
CompareStringW
SetEnvironmentVariableA
GetCurrentDirectoryA
GetConsoleMode
GetConsoleCP
GetStartupInfoW
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetCurrentDirectoryW
CreateFileA
PeekNamedPipe
GetFileInformationByHandle
GetLocaleInfoW
GetModuleFileNameW
GetStdHandle
WriteFile
GetTimeZoneInformation
HeapCreate
ExitProcess
HeapSize
GetProcAddress
GetCurrentThreadId
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetCurrentDirectoryA
FlushFileBuffers
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetCPInfo
MultiByteToWideChar
LCMapStringW
HeapSetInformation
GetCommandLineA
WideCharToMultiByte
CreateFileW
GetFileType
SetFilePointer
HeapAlloc
GetCurrentProcessId
GetDateFormatA
GetTimeFormatA
DeleteFileA
GetFullPathNameA
GetDriveTypeW
CreateDirectoryA
FindFirstFileExA
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetSystemTimeAsFileTime
HeapFree
RtlUnwind
RaiseException
DecodePointer
EncodePointer
InterlockedDecrement
InterlockedIncrement
FreeConsole
FindNextFileA
InitializeCriticalSection
GetLastError
FindFirstFileA
FindClose
FormatMessageA
DeleteCriticalSection
GetVersionExA
MoveFileExA
QueryPerformanceFrequency
QueryPerformanceCounter
ReleaseSemaphore
CreateSemaphoreA
LeaveCriticalSection
EnterCriticalSection
TryEnterCriticalSection
CloseHandle
SetEnvironmentVariableW
Sleep
WaitForSingleObject
OutputDebugStringA
CreateThread

Sections

.text
Size: 912KB - Virtual size: 912KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 198KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

756cc1c5d8ec550aa85fd275d43e486c

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

ws2_32

shell32

advapi32

opengl32

glu32

libopusfile-0

libcurl

sdl

freetype

kernel32

Sections

.text Size: 912KB - Virtual size: 912KB

.rdata Size: 198KB - Virtual size: 198KB

.data Size: 32KB - Virtual size: 1.6MB

.rsrc Size: 126KB - Virtual size: 126KB

.reloc Size: 63KB - Virtual size: 63KB

.text
Size: 912KB - Virtual size: 912KB

.rdata
Size: 198KB - Virtual size: 198KB

.data
Size: 32KB - Virtual size: 1.6MB

.rsrc
Size: 126KB - Virtual size: 126KB

.reloc
Size: 63KB - Virtual size: 63KB