HARDCODED_patreon_build[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

HARDCODED_patreon_build.exe
Size

217.1MB
MD5

271dc1c5f3081858520603122e8efa17
SHA1

45f2e0cb1703197156b3db0757e065c4a20215ec
SHA256

7374ffdc5a4e4e07193ca691b5e9425b33b236218e1d3f76f26c5d8ab4ed19bb
SHA512

1ce56e41c0d3c4a119c4e5f9344e39ee0b2f4a6299771d790bb6dc80839f47d24c6734103fda7598a0288baba58045c1595d06d5df344df4d8fbee7e27b0ec7f
SSDEEP

6291456:p6aER18a0/YVIZgSDUfhfDiaG0aksRr2zMBmmfBbHXTP1:p6LCBYVbZ5iDROmfBbjP1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HARDCODED_patreon_build.exe

Files

HARDCODED_patreon_build.exe
.exe windows:6 windows x86 arch:x86

Password: hi there

98bda56a19818a330f24b464d800f1e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

opengl32

wglCreateContext
wglMakeCurrent
wglGetCurrentDC
glViewport
glTexSubImage2D
glTexParameteri
glTexParameterf
glTexImage2D
glScissor
glReadPixels
glReadBuffer
glPolygonMode
glPixelStorei
glLineWidth
glGetString
glGetIntegerv
glGetFloatv
wglDeleteContext
glFrontFace
glFlush
glEnable
glDrawElements
glDrawBuffer
glDrawArrays
glDisable
glDepthMask
glDepthFunc
glDeleteTextures
glCullFace
glCopyTexSubImage2D
glColorMask
glClearDepth
glClearColor
glClear
glBlendFunc
glBindTexture
glGenTextures
wglGetProcAddress

kernel32

GlobalLock
SystemTimeToFileTime
GetTimeZoneInformation
MultiByteToWideChar
GetUserDefaultUILanguage
GlobalUnlock
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
LoadLibraryA
EncodePointer
GetProcAddress
LoadLibraryW
GetModuleHandleA
SetEndOfFile
WriteConsoleW
HeapSize
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
GetACP
IsValidCodePage
ReadConsoleInputW
SetConsoleMode
GetFullPathNameW
GetFileSizeEx
HeapReAlloc
SetFilePointerEx
ReadConsoleW
GetConsoleMode
FlushFileBuffers
CreatePipe
GetFileAttributesExW
GetExitCodeProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
HeapFree
HeapAlloc
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
MoveFileExW
DeleteFileW
RemoveDirectoryW
GetConsoleCP
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileInformationByHandle
GetDriveTypeW
CreateFileW
SetConsoleCtrlHandler
GetModuleHandleExW
ReadFile
GetModuleFileNameW
FreeLibrary
GetLocalTime
GetSystemTime
CreateProcessW
TerminateProcess
Sleep
WaitForSingleObject
QueryPerformanceFrequency
QueryPerformanceCounter
SetLastError
GetLastError
GetEnvironmentVariableW
GetStdHandle
WideCharToMultiByte
SetStdHandle
SetEnvironmentVariableW
DuplicateHandle
LoadLibraryExW
RaiseException
RtlUnwind
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
IsProcessorFeaturePresent
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetModuleHandleW
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SwitchToThread
LocalFree
GlobalAlloc
CreateEventW
InitializeCriticalSectionAndSpinCount
ExitProcess
SetThreadPriority
ResetEvent
SetEvent
CreateEventA
CreateThread
CreateSemaphoreA
WaitForSingleObjectEx
ReleaseSemaphore
DeleteCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
ReplaceFileW
GetLogicalDrives
GetFileAttributesW
GetDiskFreeSpaceExA
FindNextFileW
FindFirstFileExW
CreateDirectoryW
GetCurrentDirectoryW
SetCurrentDirectoryW
FlushConsoleInputBuffer
GlobalMemoryStatus
GetTickCount
GetCurrentProcessId
CloseHandle
FindClose
GetCurrentThreadId
WriteFile
GetCommandLineW
GetFileType
DecodePointer

user32

GetDC
GetClientRect
SetWindowPos
MessageBoxA
GetKeyboardLayoutNameA
TrackMouseEvent
GetDesktopWindow
GetUserObjectInformationW
GetProcessWindowStation
TranslateMessage
DispatchMessageW
PeekMessageW
SendMessageA
DefWindowProcW
CallWindowProcW
RegisterClassExW
CreateWindowExW
ShowWindow
FlashWindowEx
OpenClipboard
GetRawInputDeviceList
GetRawInputDeviceInfoA
EnumDisplayMonitors
MonitorFromWindow
EnumDisplaySettingsA
CreateIconIndirect
CreateIconFromResource
LoadIconA
LoadCursorA
SetWindowLongA
GetWindowLongA
ClipCursor
ScreenToClient
ClientToScreen
SetCursor
SetCursorPos
MessageBoxW
AdjustWindowRectEx
GetWindowRect
CloseClipboard
SetWindowTextW
ReleaseDC
AllowSetForegroundWindow
SetForegroundWindow
GetSystemMetrics
KillTimer
SetTimer
ReleaseCapture
SetCapture
SetFocus
IsClipboardFormatAvailable
EmptyClipboard
GetClipboardData
SetClipboardData
MoveWindow

gdi32

SetTextColor
GetObjectA
SelectObject
GetDeviceCaps
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
BitBlt
SwapBuffers
SetPixelFormat
ChoosePixelFormat
SetBkColor

wsock32

htons
listen
ntohs
select
setsockopt
closesocket
send
bind
accept
socket
WSAStartup
WSACleanup
recvfrom
sendto
WSAGetLastError
connect
recv
shutdown
WSASetLastError
inet_ntoa
__WSAFDIsSet

shell32

DragAcceptFiles
DragQueryFileW
SHGetFolderPathW
SHFileOperationA
ShellExecuteW
CommandLineToArgvW

dinput8

DirectInput8Create

dsound

ord1
ord7
ord2
ord6

ole32

CoInitialize
CoCreateInstance
CoUninitialize

iphlpapi

GetAdaptersAddresses

shlwapi

PathFileExistsW

ws2_32

getaddrinfo
freeaddrinfo

advapi32

ReportEventA
RegisterEventSourceA
DeregisterEventSource

Exports

Exports

NvOptimusEnablement

Sections

.text
Size: 11.3MB - Virtual size: 11.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 279KB - Virtual size: 359KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 495KB - Virtual size: 495KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: hi there

98bda56a19818a330f24b464d800f1e3

Headers

DLL Characteristics

File Characteristics

Imports

winmm

opengl32

kernel32

user32

gdi32

wsock32

shell32

dinput8

dsound

ole32

iphlpapi

shlwapi

ws2_32

advapi32

Exports

Exports

Sections

.text Size: 11.3MB - Virtual size: 11.3MB

.rdata Size: 1.9MB - Virtual size: 1.9MB

.data Size: 279KB - Virtual size: 359KB

_RDATA Size: 2KB - Virtual size: 2KB

.rsrc Size: 363KB - Virtual size: 362KB

.reloc Size: 495KB - Virtual size: 495KB

.text
Size: 11.3MB - Virtual size: 11.3MB

.rdata
Size: 1.9MB - Virtual size: 1.9MB

.data
Size: 279KB - Virtual size: 359KB

_RDATA
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 363KB - Virtual size: 362KB

.reloc
Size: 495KB - Virtual size: 495KB