cs2cheat Release x64[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

cs2cheat Release x64.dll
Size

929KB
MD5

723cae28b2a9692b74caa93111401ece
SHA1

c3a64ac33dffef351a4d10cd05ac291dc5b9e019
SHA256

5480dbc4d5451b42042dc91aa139598cd90fe0d15118e682e98d6a4126015651
SHA512

331980a470010edd8461794ff6484fc6cf34c36fa9908bfa1471979e95af7db2a2330e90fab4c9d40cff3befe4d5412694702b8ccc5b11d92cee14b93d8d13e1
SSDEEP

24576:F5hE9enDkRZ3Oj6J68+IkCDR3ClNRYZDns7:bhEkiM8oCNCEns

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cs2cheat Release x64.dll

Files

cs2cheat Release x64.dll
.dll windows:6 windows x64 arch:x64

3a6ccf21a6bd8a583b8bbe6e1fa76bf7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

d3d11

D3D11CreateDeviceAndSwapChain

psapi

GetMappedFileNameA

kernel32

FormatMessageA
VirtualQuery
MultiByteToWideChar
GlobalAlloc
GlobalFree
GlobalLock
WideCharToMultiByte
GlobalUnlock
GetModuleHandleA
LoadLibraryA
QueryPerformanceFrequency
GetProcAddress
FreeLibrary
QueryPerformanceCounter
FreeLibraryAndExitThread
CloseHandle
CreateThread
K32GetModuleInformation
WriteFile
GetLastError
DisableThreadLibraryCalls
GetCurrentProcessId
GetConsoleWindow
ReadFile
GetCurrentProcess
HeapFree
UnmapViewOfFile
HeapAlloc
CreateFileMappingA
MapViewOfFile
RtlCaptureContext
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetModuleHandleExA
VirtualAlloc
VirtualFree
VirtualProtect
CreateFileA
FlushInstructionCache
RtlLookupFunctionEntry
RtlVirtualUnwind
GetFileSizeEx

user32

IsWindowVisible
CallWindowProcA
GetWindow
SetWindowLongPtrA
GetKeyState
LoadCursorA
GetWindowThreadProcessId
EnumWindows
SetClipboardData
GetClipboardData
ScreenToClient
GetCapture
ClientToScreen
TrackMouseEvent
GetForegroundWindow
EmptyClipboard
SetCapture
IsWindowUnicode
GetClientRect
SetCursor
CloseClipboard
OpenClipboard
GetCursorPos
SetCursorPos
ReleaseCapture

shell32

ShellExecuteW

imm32

ImmSetCompositionWindow
ImmSetCandidateWindow
ImmReleaseContext
ImmGetContext

d3dcompiler_47

D3DCompile

msvcp140

_Query_perf_counter
_Xtime_get_ticks
?_Xlength_error@std@@YAXPEBD@Z
_Query_perf_frequency
_Mtx_lock
_Mtx_init_in_situ
_Mtx_unlock
?_Xout_of_range@std@@YAXPEBD@Z
?_Throw_C_error@std@@YAXH@Z
_Mtx_destroy_in_situ
_Thrd_sleep

wininet

InternetOpenUrlA
InternetReadFile
InternetOpenA

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__std_exception_destroy
__std_exception_copy
longjmp
strrchr
__current_exception
__current_exception_context
__C_specific_handler
memset
_CxxThrowException
__std_type_info_destroy_list
__std_terminate
strstr
memchr
memcmp
memcpy
memmove
__intrinsic_setjmp

api-ms-win-crt-stdio-l1-1-0

fputc
fflush
fopen
fclose
__stdio_common_vfprintf
__stdio_common_vsscanf
fread
_wfopen
fwrite
__stdio_common_vsprintf
fseek
__acrt_iob_func
ftell
fputs

api-ms-win-crt-string-l1-1-0

strncmp
strncpy
strcmp

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free

api-ms-win-crt-convert-l1-1-0

strtol
atof

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_cexit
_execute_onexit_table
_initterm
_initterm_e
terminate
_seh_filter_dll
_invalid_parameter_noinfo_noreturn
_register_onexit_function
_initialize_onexit_table
_configure_narrow_argv
_initialize_narrow_environment

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-math-l1-1-0

logf
pow
log
fmodf
powf
acosf
sqrtf
cosf
ceilf
sinf

Sections

.text
Size: 631KB - Virtual size: 630KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 262KB - Virtual size: 262KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a6ccf21a6bd8a583b8bbe6e1fa76bf7

Headers

DLL Characteristics

File Characteristics

Imports

d3d11

psapi

kernel32

user32

shell32

imm32

d3dcompiler_47

msvcp140

wininet

vcruntime140_1

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-math-l1-1-0

Sections

.text Size: 631KB - Virtual size: 630KB

.rdata Size: 262KB - Virtual size: 262KB

.data Size: 13KB - Virtual size: 16KB

.pdata Size: 17KB - Virtual size: 17KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 631KB - Virtual size: 630KB

.rdata
Size: 262KB - Virtual size: 262KB

.data
Size: 13KB - Virtual size: 16KB

.pdata
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 3KB - Virtual size: 3KB