GPU资源占用查看工具[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

GPU资源占用查看工具.exe
Size

91KB
MD5

12d234d4df603a0bcbd30016260ece7a
SHA1

21af9a7701a0e773fc21c6bb695ecf4b4a6dd5f0
SHA256

f606c1f738e68efdeb13bb38a77fb1916c33632b7a7858d8d1e7fcd3d6c85e80
SHA512

6f619d85551be2914f16d564c3dc18ccf74922439d5398eb1e39b5742c9be0ca0a0bc578132485af56aa19a74a1347c6035fccf5e28472a9a5a382282dfbf522
SSDEEP

1536:thtstUnFkhDSXwtTDMb0zW2hAXYBk8ainuBk40sca7:ntYUnFUDSYMH2pa1k40Ha

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
GPU资源占用查看工具.exe

Files

GPU资源占用查看工具.exe
.exe windows:5 windows x86 arch:x86

670d2d4782f490580569048131211f3f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\fe\Desktop\Release\GPU.pdb

Imports

kernel32

Process32First
Process32Next
CloseHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetProcessTimes
GetSystemTimes
CreateToolhelp32Snapshot
OpenProcess
Sleep
GetCurrentProcess
GetProcAddress
LoadLibraryA
WaitForSingleObject
SetErrorMode
EncodePointer
DecodePointer
GetModuleHandleW
ExitProcess
GetCommandLineA
HeapSetInformation
RaiseException
HeapAlloc
GetLastError
HeapFree
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetFileAttributesA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LoadLibraryW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoW
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapReAlloc
RtlUnwind
GetExitCodeProcess
CreateProcessA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
IsProcessorFeaturePresent
CompareStringW
MultiByteToWideChar
SetEnvironmentVariableA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
LCMapStringW
GetStringTypeW
SetFilePointer
ReadFile
WriteConsoleW
SetStdHandle
CreateFileW

user32

GetDC
GetDesktopWindow

advapi32

LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

670d2d4782f490580569048131211f3f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 448B

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 448B

.reloc
Size: 6KB - Virtual size: 6KB