D:\a\ezquake-source\ezquake-source\.vs\x64\rls-all\Output\ezQuake.pdb
Static task
static1
1 signatures
General
-
Target
ezquake.exe
-
Size
9.1MB
-
MD5
cf74aa50b39d90ae9064cff0e4a8c19d
-
SHA1
1fe5609504f39d91cc3bcc793fc6f30b85f654b2
-
SHA256
61f20aa218045697e6943644f6c4ad30615baf6bac56d4acfd63f7b9ca3b0dc3
-
SHA512
975877da190e72a7a61fc7f53831736dc0c1c0ef61b1436eec515ade24810608bd06283400e97847014a4d5a787dd02e7479e77b7aba577fd47029adadbc322a
-
SSDEEP
98304:aELmrk1BH7HJNAYaJYP8PWXGyXQy6tk7ato0Zy1Hj0wO:aELmY1BH7pNAYaJYEaVQy6tk2tLy/
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ezquake.exe
Files
-
ezquake.exe.exe windows:6 windows x64 arch:x64
6f0d76ccf4e61fa5008fe3cc87ec1723
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
winmm
timeGetTime
waveOutGetDevCapsW
timeEndPeriod
timeBeginPeriod
timeGetDevCaps
waveOutGetNumDevs
waveOutGetErrorTextW
waveOutOpen
waveOutClose
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite
waveOutReset
waveInGetNumDevs
waveInGetDevCapsW
waveInOpen
waveInClose
waveInPrepareHeader
waveInUnprepareHeader
waveInAddBuffer
waveInStart
waveInReset
comctl32
ord17
opengl32
glGetError
glGetString
glTexSubImage2D
glTexImage2D
glFinish
glClear
glVertex2f
glBegin
glVertex3fv
glVertex2fv
glGetIntegerv
glReadPixels
glVertex3f
glTexCoord2fv
glDisable
glTexCoord3f
glEnable
glDrawBuffer
glOrtho
glScalef
glRotatef
glTranslatef
glLoadIdentity
glMatrixMode
glEnd
glDrawArrays
glFrustum
glLoadMatrixf
glCopyTexSubImage2D
glTexCoord2f
glDepthRange
glEnableClientState
glPolygonOffset
glPolygonMode
glBindTexture
glVertexPointer
glCullFace
glDepthMask
glScissor
glFogf
glFogfv
glDisableClientState
glLineWidth
glBlendFunc
glColorMask
glAlphaFunc
glTexCoordPointer
glClearColor
glFogi
glColorPointer
glTexEnvi
glColor4f
glNormalPointer
glPixelStorei
glDepthFunc
glDeleteTextures
glGenTextures
glTexParameteri
glTexParameterf
glGetTexImage
glViewport
glDrawElements
glClearDepth
ws2_32
WSACreateEvent
WSAEnumNetworkEvents
accept
WSAEventSelect
WSAResetEvent
WSAWaitForMultipleEvents
WSAIoctl
inet_pton
inet_ntop
WSASetLastError
getaddrinfo
freeaddrinfo
getpeername
WSACloseEvent
WSAGetLastError
htons
htonl
recv
inet_ntoa
send
gethostbyaddr
inet_addr
gethostbyname
closesocket
ntohs
sendto
recvfrom
select
__WSAFDIsSet
ioctlsocket
getsockopt
gethostname
connect
socket
getsockname
WSAStartup
listen
bind
WSACleanup
setsockopt
kernel32
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetStartupInfoW
InitializeSListHead
GetSystemTimeAsFileTime
MoveFileExW
SleepEx
GetSystemDirectoryW
InitializeCriticalSectionEx
SetLastError
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
SwitchToThread
GetLocaleInfoA
GetSystemPowerStatus
GetModuleHandleExW
CompareStringA
GetCurrentProcess
CloseHandle
GetPriorityClass
CreateProcessA
GetExitCodeProcess
Sleep
GetLocalTime
GetTempPathA
GetCurrentProcessId
GetModuleFileNameA
OutputDebugStringA
IsDebuggerPresent
GetModuleHandleA
GetProcAddress
GlobalMemoryStatus
CreateFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
LoadLibraryA
FreeLibrary
ReadFile
FindFirstFileA
SetPriorityClass
GetStdHandle
ReleaseSemaphore
WriteFile
FindNextFileA
ExpandEnvironmentStringsA
FindClose
CreateMutexA
WaitForSingleObject
GetCurrentThreadId
GetCurrentDirectoryA
SetCurrentDirectoryA
GetVersionExA
QueryPerformanceFrequency
CreateMailslotA
CreateSemaphoreA
CreateEventA
QueryPerformanceCounter
GlobalAlloc
GlobalLock
GlobalUnlock
GetLastError
MultiByteToWideChar
WideCharToMultiByte
CreateFileW
GetFileSizeEx
GetFileType
SetEndOfFile
SetFilePointerEx
LocalFree
FormatMessageA
HeapAlloc
HeapReAlloc
HeapFree
GetProcessHeap
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
OutputDebugStringW
SetFilePointer
SetErrorMode
GetTickCount
GetModuleFileNameW
GetModuleHandleW
MulDiv
SetThreadExecutionState
ExitProcess
TerminateProcess
GlobalMemoryStatusEx
GetSystemInfo
CreateDirectoryW
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
DeleteCriticalSection
WaitForSingleObjectEx
CreateSemaphoreW
GetEnvironmentVariableA
SetEnvironmentVariableA
RaiseException
CreateThread
GetCurrentThread
SetThreadPriority
VerSetConditionMask
DeviceIoControl
GetOverlappedResult
CancelIo
ResetEvent
CreateEventW
FormatMessageW
VerifyVersionInfoW
TlsAlloc
TlsGetValue
TlsSetValue
LoadLibraryExW
user32
MonitorFromPoint
GetMonitorInfoW
EnumDisplayMonitors
SetCapture
ReleaseCapture
SetCursorPos
LoadCursorW
CopyImage
CreateIconIndirect
SystemParametersInfoW
RegisterRawInputDevices
SendMessageW
AttachThreadInput
RegisterClassW
CreateWindowExW
SetLayeredWindowAttributes
FlashWindowEx
SetFocus
GetFocus
SetActiveWindow
SetForegroundWindow
SetPropW
RemovePropW
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
IntersectRect
PtInRect
SetWindowLongW
GetWindowLongPtrW
GetClipboardSequenceNumber
GetParent
GetWindowThreadProcessId
SetWindowsHookExW
CreateIconFromResource
MonitorFromRect
MonitorFromWindow
SetWindowRgn
GetDesktopWindow
GetRawInputDeviceInfoA
GetRawInputDeviceList
PostThreadMessageW
DialogBoxIndirectParamW
EndDialog
DrawTextW
EnumDisplayDevicesW
EnumDisplaySettingsW
DestroyWindow
CreateWindowExA
RegisterClassExA
UnregisterClassA
UnregisterDeviceNotification
RegisterDeviceNotificationW
GetDoubleClickTime
RegisterWindowMessageA
GetRawInputData
DestroyIcon
LoadIconW
SendInput
GetDlgItem
GetClientRect
GetWindowLongW
FillRect
ClipCursor
ScreenToClient
ClientToScreen
GetClipCursor
GetCursorPos
SetCursor
AdjustWindowRectEx
GetPropW
ValidateRect
InvalidateRect
GetUpdateRect
GetDC
GetForegroundWindow
GetMenu
GetSystemMetrics
KillTimer
SetTimer
GetAsyncKeyState
GetKeyState
IsIconic
GetClassInfoExW
RegisterClassExW
UnregisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageExtraInfo
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
TrackMouseEvent
ChangeDisplaySettingsExW
ReleaseDC
MapVirtualKeyW
ToUnicode
GetKeyboardState
GetKeyboardLayout
SetRect
IsClipboardFormatAvailable
SystemParametersInfoA
UnhookWindowsHookEx
MessageBoxA
SetWindowTextA
FlashWindow
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
SetClipboardData
GetWindowRect
SetWindowPos
SetWindowsHookExA
ShowWindow
CallNextHookEx
SetWindowLongPtrW
gdi32
CreateDCW
CreateBitmap
GetICMProfileW
SetDeviceGammaRamp
CombineRgn
CreateCompatibleBitmap
GetDeviceCaps
GetDeviceGammaRamp
SelectObject
DeleteDC
CreateDIBSection
CreateCompatibleDC
DeleteObject
GetDIBits
CreateRectRgn
GetTextMetricsW
GetTextExtentPoint32A
CreateFontIndirectW
BitBlt
SwapBuffers
SetPixelFormat
GetPixelFormat
DescribePixelFormat
ChoosePixelFormat
CreateSolidBrush
advapi32
CryptGetHashParam
RegOpenKeyA
RegCloseKey
RegEnumValueA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegOpenKeyExW
RegQueryValueExW
CryptAcquireContextW
CryptReleaseContext
CryptCreateHash
CryptHashData
CryptDestroyHash
RegQueryValueExA
shell32
DragAcceptFiles
SHGetFolderPathW
ExtractIconExW
DragFinish
DragQueryFileW
SHGetSpecialFolderPathA
ShellExecuteW
ole32
CLSIDFromString
PropVariantClear
CoCreateGuid
CoCreateInstance
CoInitializeEx
CoUninitialize
CoTaskMemFree
oleaut32
SysFreeString
bcrypt
BCryptGenRandom
vcruntime140
wcschr
memcpy
memset
memcmp
memmove
longjmp
wcsstr
__C_specific_handler
__intrinsic_setjmp
__current_exception
__current_exception_context
memchr
strrchr
strstr
strchr
wcsrchr
api-ms-win-crt-heap-l1-1-0
_set_new_mode
calloc
malloc
realloc
free
api-ms-win-crt-stdio-l1-1-0
_open
_read
_write
__p__commode
fwrite
fputs
fclose
__stdio_common_vsnprintf_s
_set_fmode
__stdio_common_vsprintf
_close
feof
_ftelli64
_fseeki64
fflush
fseek
fopen
ungetc
getc
tmpfile
fread
__stdio_common_vfprintf
ferror
ftell
_fileno
__acrt_iob_func
_wfopen
_wopen
__stdio_common_vfscanf
fgetc
fputc
fgets
_lseeki64
__stdio_common_vsscanf
api-ms-win-crt-string-l1-1-0
iswctype
strncpy
_wcsdup
strspn
wcspbrk
isupper
strpbrk
wcsncpy
_wcsicmp
iscntrl
isgraph
isalnum
isxdigit
ispunct
strcspn
_strupr
islower
strncat
_strrev
strnlen
_strlwr
isspace
isalpha
_stricmp
_wcsnicmp
wcsncmp
isdigit
strncmp
tolower
strtok
_strdup
strcmp
isprint
toupper
_strnicmp
api-ms-win-crt-time-l1-1-0
_localtime64
strftime
_gmtime64
_time64
_difftime64
api-ms-win-crt-convert-l1-1-0
_ultoa
wcstombs
atoi
strtol
_itoa
strtoll
_ltoa
atof
strtoul
strtod
api-ms-win-crt-filesystem-l1-1-0
_fstat64
_fullpath
_unlink
remove
_rmdir
_waccess
_wstat64
_mkdir
rename
_access
api-ms-win-crt-runtime-l1-1-0
__sys_nerr
system
__sys_errlist
_set_abort_behavior
exit
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_cexit
_seh_filter_exe
_set_app_type
abort
_get_narrow_winmain_command_line
_initterm
_initterm_e
_exit
signal
_c_exit
_beginthreadex
_endthreadex
_errno
strerror
terminate
_wassert
_register_thread_local_exe_atexit_callback
api-ms-win-crt-utility-l1-1-0
rand_s
rand
qsort
srand
bsearch
api-ms-win-crt-math-l1-1-0
atan2f
atanf
ceil
ceilf
copysignf
cosf
exp
expf
floorf
fmodf
log
log10
log10f
logf
powf
atan2
sinf
sqrt
sqrtf
tan
tanf
trunc
atan
__setusermatherr
scalbn
ldexp
round
asinf
asin
lround
acosf
copysign
acos
truncf
scalbnf
_fdopen
roundf
_dclass
sin
fmod
floor
pow
lroundf
frexp
cos
api-ms-win-crt-environment-l1-1-0
getenv
getenv_s
api-ms-win-crt-locale-l1-1-0
localeconv
_configthreadlocale
setupapi
CM_Get_Device_IDA
SetupDiGetDeviceRegistryPropertyA
CM_Locate_DevNodeA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
CM_Get_Parent
SetupDiEnumDeviceInfo
version
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA
imm32
ImmGetContext
ImmSetCandidateWindow
ImmReleaseContext
ImmAssociateContext
ImmGetCompositionStringW
ImmSetCompositionStringW
ImmGetCandidateListW
ImmNotifyIME
ImmSetCompositionWindow
ImmGetIMEFileNameA
crypt32
CertGetNameStringW
CertFindExtension
CertAddCertificateContextToStore
CryptDecodeObjectEx
PFXImportCertStore
CryptQueryObject
CertFreeCertificateContext
CertFindCertificateInStore
CertEnumCertificatesInStore
CertCloseStore
CertGetCertificateChain
CertCreateCertificateChainEngine
CryptStringToBinaryW
CertFreeCertificateChain
CertFreeCertificateChainEngine
CertOpenStore
Exports
Exports
AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
Sections
.text Size: 5.6MB - Virtual size: 5.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1.2MB - Virtual size: 113.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 240KB - Virtual size: 239KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 34KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ