ubiorbitapi_r2_loader[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

ubiorbitapi_r2_loader.zip
Size

104KB
MD5

70714149d3a8f5a57f14cf79281cfb34
SHA1

0f2b690974f5de4e5b2c5c5d78b8943be629ad6b
SHA256

42f5a025de4a34200e9be8978ce49869e07a2d179498523dd23375ea725ece73
SHA512

15ba67acd376abfb05b650a9f5522c120c26a1498b479f80993c6a14e55bb3f73e459414c93fd02d46f62a47c648d6c9560b49fd9772b96c2b0d3aa183ceb975
SSDEEP

3072:qO6KxvfIEO/0yiBcZ8u64FgVq8qosqMDLnd:B6Q4EOMjNyFS9sDnd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ubiorbitapi_r2_loader.dll

Files

ubiorbitapi_r2_loader.zip
.zip
README.txt
ubiorbitapi_r2_loader.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\p4ws\massgate-MAIN\massgate\uplay_pc\1.7\live\tools\build\SDK-10\build\api\orbitdll_loader\Release\ubiorbitapi_r2_loader.pdb

Exports

Exports

??0OrbitClient@orbitclient@mg@@QAE@XZ
??0SavegameInfo@orbitclient@mg@@AAE@XZ
??0SavegameReader@orbitclient@mg@@AAE@XZ
??0SavegameWriter@orbitclient@mg@@AAE@XZ
??1OrbitClient@orbitclient@mg@@QAE@XZ
??1SavegameInfo@orbitclient@mg@@AAE@XZ
??1SavegameReader@orbitclient@mg@@AAE@XZ
??1SavegameWriter@orbitclient@mg@@AAE@XZ
?Close@SavegameReader@orbitclient@mg@@QAEXXZ
?Close@SavegameWriter@orbitclient@mg@@QAEX_N@Z
?GetInstallationErrorNum@OrbitClient@orbitclient@mg@@QAEIXZ
?GetInstallationErrorString@OrbitClient@orbitclient@mg@@QAEPAGPBD@Z
?GetLocText@OrbitClient@orbitclient@mg@@QAEPBGPBGPBD@Z
?GetLoginDetails@OrbitClient@orbitclient@mg@@QAEXIPAVIGetLoginDetailsListener@23@@Z
?GetName@SavegameInfo@orbitclient@mg@@QAEPBGXZ
?GetNetworkTraffic@OrbitClient@orbitclient@mg@@QAEXIPAVIGetNetworkTrafficListener@23@@Z
?GetOrbitServer@OrbitClient@orbitclient@mg@@QAEXIPAVIGetOrbitServerListener@23@II@Z
?GetProductId@SavegameInfo@orbitclient@mg@@QAEIXZ
?GetRequestUniqueId@OrbitClient@orbitclient@mg@@QAEIXZ
?GetSavegameId@SavegameInfo@orbitclient@mg@@QAEIXZ
?GetSavegameList@OrbitClient@orbitclient@mg@@QAEXIPAVIGetSavegameListListener@23@I@Z
?GetSavegameReader@OrbitClient@orbitclient@mg@@QAEXIPAVIGetSavegameReaderListener@23@II@Z
?GetSavegameWriter@OrbitClient@orbitclient@mg@@QAEXIPAVIGetSavegameWriterListener@23@II_N@Z
?GetSize@SavegameInfo@orbitclient@mg@@QAEIXZ
?Read@SavegameReader@orbitclient@mg@@QAEXIPAVISavegameReadListener@23@IPAXI@Z
?RemoveSavegame@OrbitClient@orbitclient@mg@@QAEXIPAVIRemoveSavegameListener@23@II@Z
?SetName@SavegameWriter@orbitclient@mg@@QAE_NPAG@Z
?StartLauncher@OrbitClient@orbitclient@mg@@QAE_NIIPBD0@Z
?StartProcess@OrbitClient@orbitclient@mg@@QAEXPAG00@Z
?Update@OrbitClient@orbitclient@mg@@QAEXXZ
?Write@SavegameWriter@orbitclient@mg@@QAEXIPAVISavegameWriteListener@23@PAXI@Z

Sections

.text
Size: 179KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 179KB - Virtual size: 180KB

.rdata Size: 25KB - Virtual size: 28KB

.data Size: 9KB - Virtual size: 16KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 179KB - Virtual size: 180KB

.rdata
Size: 25KB - Virtual size: 28KB

.data
Size: 9KB - Virtual size: 16KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 8KB - Virtual size: 8KB