SimCity 4[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SimCity 4.exe
Size

7.2MB
MD5

53d2ae4fa9114b88ad91ecf32a7f16a4
SHA1

c5607c745c727630af57b614fdbb71de044ed849
SHA256

3bc5c7fe807fe5aa24a3abb06e40f13486670bc1150612c09baf4ecedafe1a4b
SHA512

9ce24392ce95da94369e069fe004f4df65c463d2fa42de540901597cf828b0d21f9efb59b9d05f747044e8818e5ec6baa3107f5b215cadc02ce0d43fe0fd0927
SSDEEP

196608:9luYyy2fiGnRzwoEXF3hBtGRGMJN2p0I7:9luYyy2fiGnRzwoEX3BtCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SimCity 4.exe

Files

SimCity 4.exe
.exe windows:4 windows x86 arch:x86

8790251960423e8bd926887c4f147f27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\SimCity4\SC4000Projects\Ep1\out\ReleaseSRT\SimCity 4.pdb

Imports

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
GetUserNameA

wsock32

connect
accept
recv
getsockopt
setsockopt
inet_ntoa
getsockname
bind
shutdown
WSAAsyncSelect
select
__WSAFDIsSet
socket
closesocket
WSACleanup
WSAStartup
ioctlsocket
WSAGetLastError
gethostbyname
getpeername
send
listen

wininet

InternetOpenA
InternetSetOptionA
HttpOpenRequestA
InternetGetCookieA
InternetOpenUrlA
InternetConnectA
InternetSetCookieA
HttpSendRequestA
InternetReadFile
InternetQueryDataAvailable
InternetCloseHandle

kernel32

HeapAlloc
ExitProcess
GetCommandLineA
GetVersion
SetPriorityClass
GetCurrentProcess
SetEvent
CloseHandle
FindCloseChangeNotification
FindNextChangeNotification
WaitForMultipleObjects
CreateEventA
FindFirstChangeNotificationA
CreateProcessA
OutputDebugStringA
Sleep
GetProcAddress
LoadLibraryA
FreeLibrary
VirtualQuery
VirtualAlloc
VirtualFree
GetSystemInfo
GetModuleFileNameA
IsBadReadPtr
GetModuleHandleA
GetVersionExA
SetErrorMode
SetProcessAffinityMask
GetProcessAffinityMask
DeleteFileA
MultiByteToWideChar
GetWindowsDirectoryA
GlobalFree
GlobalAlloc
GetTickCount
CreateMutexA
WaitForSingleObject
ReleaseMutex
SetThreadPriority
CreateThread
GetFileInformationByHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
SearchPathA
GetLocaleInfoW
GetExitCodeProcess
IsBadCodePtr
SetConsoleCtrlHandler
IsValidCodePage
IsValidLocale
VirtualProtect
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapCreate
HeapDestroy
GetTimeZoneInformation
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
HeapSize
SetStdHandle
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
ExitThread
CreateDirectoryA
GetFullPathNameA
GetCurrentDirectoryA
GetDateFormatA
GetTimeFormatA
HeapReAlloc
GetStartupInfoA
GetSystemTimeAsFileTime
RtlUnwind
GetStringTypeA
LCMapStringA
EnumSystemLocalesA
CompareStringW
GetCPInfo
LCMapStringW
GetStringTypeW
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetFileType
InterlockedExchange
GetLocaleInfoA
FindResourceA
SizeofResource
LoadResource
LockResource
InterlockedIncrement
InterlockedDecrement
ResetEvent
PulseEvent
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
CompareStringA
GetUserDefaultLCID
GlobalSize
GlobalLock
GlobalUnlock
QueueUserAPC
GetExitCodeThread
SuspendThread
ResumeThread
GetLocalTime
GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
TerminateProcess
RaiseException
IsBadWritePtr
RemoveDirectoryA
FindNextFileA
FindClose
CopyFileA
MoveFileA
SetFileAttributesA
GetFileAttributesA
CreateFileA
ReadFile
GetVolumeInformationA
GetTempPathA
FlushFileBuffers
SetEndOfFile
WriteFile
SetFilePointer
GetFileSize
lstrcmpiA
lstrlenA
lstrcpynA
WideCharToMultiByte
SetEnvironmentVariableA
HeapFree
GetProcessHeap
PeekNamedPipe
GetComputerNameA
GlobalMemoryStatus
GetLogicalDriveStringsA
GetDriveTypeA
GetPriorityClass
GetCurrentThread
GetThreadPriority
QueryPerformanceCounter
QueryPerformanceFrequency
SleepEx
GetSystemDirectoryA
FindFirstFileA
GetLastError
FormatMessageA
LocalFree
LoadLibraryW

user32

CreateCursor
ScreenToClient
GetCursorPos
CharUpperBuffA
CharLowerBuffA
SetClipboardViewer
SendMessageA
EmptyClipboard
WaitForInputIdle
RegisterWindowMessageA
SetClassLongA
OffsetRect
FillRect
ReleaseCapture
GetCapture
SetCapture
PostMessageA
SetClipboardData
OpenClipboard
IsClipboardFormatAvailable
GetClipboardData
SetFocus
SetWindowTextA
IsWindowVisible
MoveWindow
EnumWindows
GetWindowTextA
GetSystemMetrics
GetAsyncKeyState
SystemParametersInfoA
CloseClipboard
ChangeClipboardChain
BeginPaint
GetDesktopWindow
DestroyWindow
GetClassInfoA
LoadCursorA
LoadIconA
RegisterClassA
CreateWindowExA
SetWindowLongA
GetWindowLongA
DefWindowProcA
GetKeyState
MessageBoxA
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
GetForegroundWindow
GetActiveWindow
wsprintfA
ClientToScreen
SetCursorPos
ShowCursor
DispatchMessageA
TranslateMessage
WaitMessage
PeekMessageA
PostQuitMessage
UnregisterClassA
ReleaseDC
GetClientRect
GetDC
EnumDisplaySettingsA
UpdateWindow
ShowWindow
ChangeDisplaySettingsA
SetRect
RedrawWindow
DrawMenuBar
GetWindowRect
AdjustWindowRect
GetMenu
MapWindowPoints
SetWindowPos
SetCursor
DestroyCursor
GetIconInfo
LoadImageA
LoadCursorFromFileA
KillTimer
SetTimer
AdjustWindowRectEx
InvalidateRect
IsIconic
EndPaint
GetWindowPlacement

gdi32

DeleteDC
CreateCompatibleDC
CreateDIBSection
GdiFlush
GetDeviceCaps
GetObjectA
BitBlt
DeleteObject
ChoosePixelFormat
SetPixelFormat
SwapBuffers
SetStretchBltMode
GetDIBits
SelectObject
GetStockObject

shell32

ShellExecuteA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc

dsound

ord1
ord2

winmm

mmioGetInfo
mmioAdvance
mmioClose
mmioDescend
mmioSeek
mmioAscend
mmioRead
mmioOpenA
mmioSetInfo

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

opengl32

glNormalPointer
glColor4f
glEnableClientState
glGetString
glDrawArrays
glTexCoordPointer
glGetError
glColorPointer
glPixelStorei
wglGetCurrentContext
wglCreateContext
wglMakeCurrent
wglDeleteContext
glOrtho
glFlush
wglGetCurrentDC
wglGetProcAddress
glDrawElements
glReadBuffer
glReadPixels
glScissor
glViewport
glLightfv
glPolygonOffset
glTexGenfv
glTexGeni
glGetFloatv
glGetBooleanv
glIsEnabled
glLoadIdentity
glLoadMatrixf
glMatrixMode
glAreTexturesResident
glPrioritizeTextures
glIsTexture
glDeleteTextures
glGenTextures
glDisable
glColorMaterial
glEnable
glLightModelfv
glMaterialfv
glFogfv
glFogi
glGetTexLevelParameteriv
glTexSubImage2D
glGetIntegerv
glTexParameteri
glTexEnvfv
glTexEnvi
glVertexPointer
glTexImage2D
glBindTexture
glShadeModel
glAlphaFunc
glBlendFunc
glStencilOp
glStencilMask
glStencilFunc
glDepthMask
glColorMask
glDepthFunc
glClearStencil
glClearDepth
glClearColor
glClear
glDisableClientState

msvfw32

ICLocate
ICDecompress
ICSendMessage

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmSetOpenStatus
ImmNotifyIME
ImmSetCompositionStringW
ImmGetCompositionStringW
ImmGetCandidateListW
ImmGetContext

Exports

Exports

GZDllGetGZCOMDirector
__export__GetMemoryReport

Sections

.text
Size: 6.5MB - Virtual size: 6.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 540KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 720KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LBMPEG_D
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

STLPORT_
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8790251960423e8bd926887c4f147f27

Headers

File Characteristics

PDB Paths

Imports

advapi32

wsock32

wininet

kernel32

user32

gdi32

shell32

dsound

winmm

version

opengl32

msvfw32

imm32

Exports

Exports

Sections

.text Size: 6.5MB - Virtual size: 6.5MB

.rdata Size: 540KB - Virtual size: 538KB

.data Size: 104KB - Virtual size: 720KB

LBMPEG_D Size: 4KB - Virtual size: 1024B

.data1 Size: 8KB - Virtual size: 7KB

STLPORT_ Size: 4KB - Virtual size: 32B

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 6.5MB - Virtual size: 6.5MB

.rdata
Size: 540KB - Virtual size: 538KB

.data
Size: 104KB - Virtual size: 720KB

LBMPEG_D
Size: 4KB - Virtual size: 1024B

.data1
Size: 8KB - Virtual size: 7KB

STLPORT_
Size: 4KB - Virtual size: 32B

.rsrc
Size: 32KB - Virtual size: 31KB