Displacer Pro v1[.]5[.]0[.]4[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Displacer Pro v1.5.0.4.zip
Size

241KB
MD5

68b485c34378750c98df970e8508f797
SHA1

cdd3cdb27ac99f7dad4bb55bdc6ef408bc134c05
SHA256

2924ffb5a362612d16960375d1d99cb34e681f70e4af16f914cd2d825ed0d1f9
SHA512

08d2c8a4182f24b6670b14f4afa1122e770557c9d8ee362b74c55d59fd2e70e972a09b2a66c6728ab8c73817b109b93a9724945d238fd8118fba3750f4eca5aa
SSDEEP

6144:4HWek7fHKOwxyYi6YIbJKC3ToHDc5OjXks8f2sgZY:NN7fZwLi6PKuEIY0isgm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Displacer Pro v1.5.0.4/Win/DisplacerPro.aex

Files

Displacer Pro v1.5.0.4.zip
.zip
Displacer Pro v1.5.0.4/.DS_Store
Displacer Pro v1.5.0.4/Win/.DS_Store
Displacer Pro v1.5.0.4/Win/DisplacerPro.aex
.dll windows:6 windows x64 arch:x64

6bd1db7a2f135fe87cf9bdba136b8e8a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

opengl32

wglGetProcAddress
wglCreateContext
wglDeleteContext
wglGetCurrentContext
wglGetCurrentDC
wglMakeCurrent
glBindTexture
glClear
glClearColor
glColorMask
glGetString
glCullFace
glDeleteTextures
glDisable
glEnable
glFinish
glGenTextures
glGetError
glPixelStorei
glReadBuffer
glReadPixels
glTexImage2D
glTexParameteri
glTexSubImage2D
glViewport
glGetIntegerv

kernel32

GetCurrentProcessId
QueryPerformanceCounter
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
GetCurrentThreadId
GetProcAddress
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
CloseHandle
GetLastError
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
RtlCaptureContext
InitializeSListHead

user32

GetDC
DestroyWindow
CreateWindowExA
RegisterClassExA
UnregisterClassA
DefWindowProcA
LoadCursorA
ReleaseDC

gdi32

GetStockObject
SetPixelFormat
ChoosePixelFormat

shell32

ShellExecuteA

msvcp140

?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
_Mtx_init_in_situ
_Mtx_destroy_in_situ
_Mtx_lock
_Mtx_unlock
?_Throw_C_error@std@@YAXH@Z
?uncaught_exception@std@@YA_NXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z

vcruntime140

memset
__std_terminate
memcmp
__C_specific_handler
__std_type_info_destroy_list
memcpy
memmove
__CxxFrameHandler3
_CxxThrowException
__std_exception_copy
__std_exception_destroy

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm
terminate
_initialize_onexit_table
_seh_filter_dll
_cexit
_crt_atexit
_wassert
_execute_onexit_table
_invalid_parameter_noinfo_noreturn
_initialize_narrow_environment
_configure_narrow_argv
_register_onexit_function

api-ms-win-crt-string-l1-1-0

strncpy

api-ms-win-crt-heap-l1-1-0

malloc
free
_callnewh

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vfprintf

Exports

Exports

EffectMain

Sections

.text
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Displacer Pro v1.5.0.4/macOS/.DS_Store
Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/CodeResources
Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/Info.plist
.xml
Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/MacOS/DisplacerPro
.bundle macos arch:arm64 arch:x64
Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/PkgInfo
Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/Resources/DisplacerPro.rsrc
Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/_CodeSignature/CodeResources
.xml
Displacer Pro v1.5.0.4/support.html
.html
__MACOSX/._Displacer Pro v1.5.0.4
__MACOSX/Displacer Pro v1.5.0.4/._.DS_Store
__MACOSX/Displacer Pro v1.5.0.4/._Win
__MACOSX/Displacer Pro v1.5.0.4/._macOS
__MACOSX/Displacer Pro v1.5.0.4/._support.html
__MACOSX/Displacer Pro v1.5.0.4/Win/._.DS_Store
__MACOSX/Displacer Pro v1.5.0.4/Win/._DisplacerPro.aex
__MACOSX/Displacer Pro v1.5.0.4/macOS/._.DS_Store
__MACOSX/Displacer Pro v1.5.0.4/macOS/._DisplacerPro.plugin
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/._Contents
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/._CodeResources
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/._Info.plist
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/._MacOS
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/._PkgInfo
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/._Resources
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/.__CodeSignature
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/MacOS/._DisplacerPro
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/Resources/._DisplacerPro.rsrc
__MACOSX/Displacer Pro v1.5.0.4/macOS/DisplacerPro.plugin/Contents/_CodeSignature/._CodeResources

Sharing

General

Malware Config

Signatures

Files

6bd1db7a2f135fe87cf9bdba136b8e8a

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

kernel32

user32

gdi32

shell32

msvcp140

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-stdio-l1-1-0

Exports

Exports

Sections

.text Size: 186KB - Virtual size: 185KB

.rdata Size: 133KB - Virtual size: 132KB

.data Size: 13KB - Virtual size: 38KB

.pdata Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 856B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 186KB - Virtual size: 185KB

.rdata
Size: 133KB - Virtual size: 132KB

.data
Size: 13KB - Virtual size: 38KB

.pdata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 856B

.reloc
Size: 3KB - Virtual size: 3KB