snes9x-x64[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

snes9x-x64.exe
Size

12.8MB
MD5

1c83f27176c656394884d95d48431264
SHA1

8aa3a8f2a483509dda44282df01cad6d46be2754
SHA256

c843d906c1fa1fefa672e99cfd218041d229ef7598bce720465fe7a0905f3a4b
SHA512

f59603318958835484495ba3f25399b8f755ae65572ad81068f7bd2131cccf318c1b3638487604d9cca05c002c67cdc5e03b9c9259ad2f59a0f9e9bac43ac6ef
SSDEEP

98304:/e10L4TTnV7I4OKAKQB+kvq7SSHCH2n8DBNp4SENpH2DQQfm4t/YYUtsQaYnWD:/Oy4/FI4vnkCUy8FMdNNEQL4t/YFlo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
snes9x-x64.exe

Files

snes9x-x64.exe
.exe windows:5 windows x64 arch:x64

104b99095e9ac6b5e1a27d9dbd1377be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\projects\snes9x\win32\_Intermediate\snes9x\Release Unicode\x64\snes9x.pdb

Imports

comctl32

ImageList_Add
ImageList_Create
InitCommonControlsEx

winmm

timeGetTime
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutGetDevCapsW
waveOutGetNumDevs
waveOutSetVolume
waveOutMessage
waveOutClose
joyGetPosEx
joyGetDevCapsW
timeGetDevCaps
timeKillEvent
timeEndPeriod
timeSetEvent
timeBeginPeriod
waveOutWrite
waveOutReset
waveOutPause
waveOutOpen
waveOutRestart

opengl32

wglCreateContext
wglMakeCurrent
wglDeleteContext
wglGetProcAddress

wsock32

connect
WSAGetLastError
socket
gethostname
send
ioctlsocket
WSAStartup
recv
select
gethostbyname
closesocket
__WSAFDIsSet
setsockopt
htonl
inet_addr
gethostbyaddr
listen
bind
accept
htons

avifil32

AVIFileInit
AVIStreamSetFormat
AVIFileExit
AVIMakeCompressedStream
AVISaveOptions
AVIFileRelease
AVIFileOpenW
AVIStreamRelease
AVIFileCreateStreamW
AVIStreamWrite

shlwapi

PathFindExtensionW
SHDeleteKeyW
PathFindFileNameW
PathIsRelativeW

kernel32

InterlockedPopEntrySList
SetProcessAffinityMask
VirtualFree
SetStdHandle
GetFileType
ExitThread
ResumeThread
SetEnvironmentVariableA
SetEnvironmentVariableW
SetCurrentDirectoryA
GetCurrentDirectoryA
GetFullPathNameA
PeekNamedPipe
SetFilePointerEx
VirtualProtect
VirtualAlloc
LoadLibraryExW
FreeLibraryAndExitThread
GetThreadTimes
WriteConsoleW
MultiByteToWideChar
GlobalAlloc
GlobalFree
GlobalLock
WideCharToMultiByte
GlobalUnlock
LoadLibraryA
GetProcAddress
FreeLibrary
ReleaseSemaphore
WaitForSingleObject
CreateEventW
Sleep
ResetEvent
CreateSemaphoreW
ReadFile
WriteFile
SetFilePointer
CreateFileW
GetLastError
CreateFileA
CloseHandle
lstrcpynW
lstrcpyW
SetCurrentDirectoryW
lstrlenW
LoadLibraryW
FileTimeToSystemTime
GetTimeFormatW
SystemTimeToTzSpecificLocalTime
GetDateFormatW
GetFileTime
lstrcmpiW
lstrcmpW
GetVersionExW
LocalAlloc
SetEvent
LocalFree
OutputDebugStringA
FormatMessageW
OutputDebugStringW
FormatMessageA
DebugBreak
GetModuleHandleA
GetModuleHandleW
WaitForMultipleObjects
GetSystemInfo
CreateThread
CreateMutexW
ReleaseMutex
CopyFileA
MoveFileExA
GetFullPathNameW
GetModuleFileNameW
GetModuleFileNameA
DeleteCriticalSection
SetWaitableTimer
CreateWaitableTimerW
QueryPerformanceFrequency
GetFileSize
QueryPerformanceCounter
GetLogicalDrives
InterlockedFlushSList
GetCommandLineW
FindNextFileW
SetErrorMode
FindClose
SetFileAttributesW
lstrcatW
GetCurrentDirectoryW
GetDriveTypeW
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
SignalObjectAndWait
CreateTimerQueue
InitializeSListHead
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetNativeSystemInfo
GetExitCodeThread
GetCurrentThread
GetCurrentProcess
WaitForSingleObjectEx
DuplicateHandle
GetTickCount
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SwitchToThread
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleExW
QueueUserWorkItem
IsProcessorFeaturePresent
GetCurrentThreadId
RtlCaptureStackBackTrace
RaiseException
DecodePointer
EncodePointer
RtlPcToFileHeader
CreateHardLinkW
MoveFileExW
CopyFileW
CreateDirectoryExW
DeviceIoControl
SetLastError
AreFileApisANSI
GetTempPathW
SetFileTime
RemoveDirectoryW
GetFileInformationByHandle
GetFileAttributesExW
GetFileAttributesW
GetDiskFreeSpaceExW
FindFirstFileExW
DeleteFileW
CreateDirectoryW
ExitProcess
GetStdHandle
GetACP
InterlockedPushEntrySList
RtlUnwind
QueryDepthSList
UnregisterWaitEx
WaitForMultipleObjectsEx
FindFirstFileW
SetEndOfFile
GetConsoleMode
ReadConsoleW
GetConsoleCP
HeapAlloc
HeapFree
IsValidLocale
RtlUnwindEx
GetUserDefaultLCID
EnumSystemLocalesW
GetTimeZoneInformation
FlushFileBuffers
HeapReAlloc
HeapSize
HeapQueryInformation
SetConsoleCtrlHandler
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
CreateMutexA
InitializeCriticalSection

user32

ValidateRect
GetDlgItemTextW
IsDlgButtonChecked
TranslateAcceleratorW
GetUpdateRect
TranslateMessage
SendDlgItemMessageA
SendMessageA
SetCapture
MapWindowPoints
PeekMessageW
SetMenuItemInfoW
GetDlgCtrlID
DispatchMessageW
GetDlgItemTextA
RegisterDeviceNotificationW
ShowWindow
GetActiveWindow
GetSubMenu
LoadAcceleratorsW
CreatePopupMenu
UnregisterClassW
GetMenuItemCount
SetActiveWindow
DestroyWindow
InsertMenuItemW
GetMessageW
SetCursor
wsprintfW
SetWindowLongW
RemoveMenu
PostQuitMessage
CreateDialogParamW
GetMenuItemInfoW
ReleaseCapture
LoadImageW
SetCursorPos
GetCursorPos
EnableWindow
GetMenu
GetWindowPlacement
SetWindowPlacement
LoadMenuW
DrawMenuBar
GetKeyState
DestroyCursor
DestroyAcceleratorTable
GetSystemMetrics
DefWindowProcW
MapVirtualKeyW
RegisterClassExW
GetAsyncKeyState
SetTimer
GetSysColor
IsWindowEnabled
SetFocus
LoadCursorW
GetSysColorBrush
UpdateWindow
InvalidateRect
BeginPaint
EndPaint
GetForegroundWindow
SetDlgItemTextW
SendDlgItemMessageW
LoadIconW
SetScrollInfo
GetScrollInfo
MapDialogRect
SetScrollPos
ScrollWindow
GetParent
GetWindowTextW
ChangeDisplaySettingsW
EnumDisplayDevicesW
EnumDisplaySettingsW
ReleaseDC
GetWindowLongW
AdjustWindowRectEx
GetWindowRect
GetDC
SetWindowPos
MonitorFromWindow
SetWindowLongPtrW
CreateWindowExW
ScreenToClient
SendMessageW
EndDialog
SetWindowTextW
GetWindowLongPtrW
RedrawWindow
GetMonitorInfoW
MoveWindow
GetDlgItem
DialogBoxParamW
OffsetRect
ClientToScreen
GetClientRect
MessageBoxW
IsIconic
MessageBoxA
PostMessageW
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
SetClipboardData
SetMenu
CallWindowProcW
CheckDlgButton

gdi32

GetDeviceCaps
GetTextMetricsW
GetTextExtentPoint32W
CreateICW
GetStockObject
SetTextColor
DeleteObject
CreateFontIndirectW
ChoosePixelFormat
SwapBuffers
SetPixelFormat
SelectObject
CreateDIBSection
CreateCompatibleDC
StretchDIBits
DeleteDC
ExtTextOutW
SetBkColor

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegCreateKeyExW
RegCloseKey
RegSetValueExW

shell32

CommandLineToArgvW
SHGetPathFromIDListW
DragQueryFileW
SHGetMalloc
DragAcceptFiles
DragFinish
ShellExecuteW
SHBrowseForFolderW

ole32

PropVariantClear
CoUninitialize
CoInitializeEx
CoTaskMemFree
CoCreateInstance

oleaut32

SysFreeString
SysAllocString

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

d3d9

Direct3DCreate9

ddraw

DirectDrawCreate

Sections

.text
Size: 8.8MB - Virtual size: 8.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 485KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 358KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 546KB - Virtual size: 545KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

104b99095e9ac6b5e1a27d9dbd1377be

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

winmm

opengl32

wsock32

avifil32

shlwapi

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

imm32

d3d9

ddraw

Sections

.text Size: 8.8MB - Virtual size: 8.8MB

.rdata Size: 2.6MB - Virtual size: 2.6MB

.data Size: 485KB - Virtual size: 3.8MB

.pdata Size: 358KB - Virtual size: 358KB

_RDATA Size: 2KB - Virtual size: 1KB

.rsrc Size: 546KB - Virtual size: 545KB

.text
Size: 8.8MB - Virtual size: 8.8MB

.rdata
Size: 2.6MB - Virtual size: 2.6MB

.data
Size: 485KB - Virtual size: 3.8MB

.pdata
Size: 358KB - Virtual size: 358KB

_RDATA
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 546KB - Virtual size: 545KB