C:\Work\doorkickers2\PC\DoorKickers2.pdb
Static task
static1
1 signatures
General
-
Target
DoorKickers2.exe
-
Size
8.2MB
-
MD5
a1f10f545187f0f4b68f584dbf5d60ac
-
SHA1
697893b0838bf39d73c9f304152e5714a4d858e1
-
SHA256
625b74d3e3d99da7df35d334ede3216f065c0439b135637f9e5e93e9092852fe
-
SHA512
3fdf51bc8f8e15b27b22675e3547c34b892184e761054c5cc7ef982c6a6fafb53df47971e93805600471d61f9e875859629070ecfaca4f1ecbae600ae249b00b
-
SSDEEP
98304:JmSQHKR9d/xa0OPCRRtf21DZ/xDfYu52Ot+CoDDkTTWn6L:J5QM/I0OPCtf2NVxLYuUOECXG
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource DoorKickers2.exe
Files
-
DoorKickers2.exe.exe windows:6 windows x64 arch:x64
11a177b0beae19b1b180a6ed2e1afa20
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
openal32
alBufferData
alDeleteBuffers
alDeleteSources
alDistanceModel
alGenBuffers
alGenSources
alGetBufferi
alGetError
alGetProcAddress
alGetSourcei
alGetString
alListenerfv
alSource3i
alSourcePause
alSourcePlay
alSourceQueueBuffers
alSourceStop
alSourceUnqueueBuffers
alSourcef
alSourcefv
alSourcei
alcCaptureCloseDevice
alcCaptureOpenDevice
alcCaptureSamples
alcCaptureStart
alcCaptureStop
alcCloseDevice
alcCreateContext
alcDestroyContext
alcGetContextsDevice
alcGetCurrentContext
alcGetError
alcGetIntegerv
alcGetString
alcIsExtensionPresent
alcMakeContextCurrent
alcOpenDevice
steam_api64
SteamAPI_RegisterCallResult
SteamInternal_FindOrCreateGameServerInterface
SteamAPI_GetHSteamUser
SteamAPI_RegisterCallback
SteamAPI_RunCallbacks
SteamInternal_FindOrCreateUserInterface
SteamAPI_UnregisterCallResult
SteamInternal_ContextInit
SteamAPI_Init
SteamInternal_CreateInterface
SteamAPI_Shutdown
SteamAPI_UnregisterCallback
avcodec-58
av_free_packet
av_init_packet
avcodec_alloc_context3
avcodec_close
avcodec_decode_video2
avcodec_find_decoder
avcodec_open2
avpicture_alloc
avpicture_free
avformat-58
av_probe_input_format
av_read_frame
av_register_all
av_seek_frame
avformat_alloc_context
avformat_find_stream_info
avformat_free_context
avformat_open_input
avio_alloc_context
avutil-56
av_frame_alloc
av_free
av_mallocz
av_strerror
swscale-5
sws_freeContext
sws_getContext
sws_scale
ws2_32
WSAGetLastError
WSAStartup
select
WSASetLastError
recv
send
__WSAFDIsSet
WSACleanup
bind
gethostname
ioctlsocket
listen
accept
sendto
recvfrom
freeaddrinfo
getaddrinfo
WSAIoctl
socket
setsockopt
ntohs
htons
getsockopt
getsockname
getpeername
connect
closesocket
kernel32
FreeLibraryAndExitThread
MoveFileExW
GetFullPathNameW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetEnvironmentVariableW
RemoveDirectoryW
DeleteFileW
GetFileInformationByHandle
GetDriveTypeW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileW
FindFirstFileExW
FindClose
GetModuleHandleExW
ExitProcess
LoadLibraryExW
InitializeCriticalSectionAndSpinCount
RtlUnwind
RtlPcToFileHeader
RtlUnwindEx
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
GetStringTypeW
GetSystemTimeAsFileTime
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
OutputDebugStringA
GetModuleHandleA
LoadLibraryA
CreateDirectoryW
EnterCriticalSection
SetFilePointerEx
GetUserDefaultUILanguage
SetThreadPriority
LeaveCriticalSection
InitializeCriticalSection
GetSystemPowerStatus
WaitForSingleObject
GetFileAttributesW
GetCommandLineA
SetFileAttributesW
MultiByteToWideChar
Sleep
K32GetModuleFileNameExA
GetLastError
SetEvent
QueryPerformanceFrequency
GlobalAlloc
GlobalFree
CloseHandle
RaiseException
GetSystemInfo
CreateThread
ResetEvent
GetLocalTime
SwitchToThread
GetProcAddress
GlobalLock
DeleteCriticalSection
GlobalMemoryStatusEx
GetModuleHandleW
FreeLibrary
CopyFileW
WideCharToMultiByte
K32EnumProcessModules
CreateEventA
QueryPerformanceCounter
GlobalUnlock
WriteProcessMemory
CreateFileW
GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
GetEnvironmentVariableA
LocalAlloc
LocalFree
VerSetConditionMask
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
VerifyVersionInfoW
TryEnterCriticalSection
GetThreadPriority
ExitThread
TerminateThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetThreadAffinityMask
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
GetTickCount64
SetLastError
InitializeCriticalSectionEx
SleepEx
VerifyVersionInfoA
FormatMessageA
WaitForSingleObjectEx
GetStdHandle
GetFileType
ReadFile
PeekNamedPipe
WaitForMultipleObjects
ExpandEnvironmentStringsA
WriteFile
GetModuleFileNameW
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
HeapFree
HeapAlloc
HeapReAlloc
HeapSize
GetExitCodeThread
EncodePointer
DecodePointer
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileSizeEx
FlushFileBuffers
SetStdHandle
GetTimeZoneInformation
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetCurrentProcess
LCMapStringEx
user32
BeginDeferWindowPos
ShowWindow
TranslateMessage
SendMessageA
EndDeferWindowPos
RegisterClassExW
UnregisterClassW
CreateWindowExW
DestroyWindow
DispatchMessageA
GetMessageA
DefWindowProcW
DeferWindowPos
GetCursorPos
ReleaseDC
SetCursorPos
ShowCursor
ReleaseCapture
RegisterClassExA
FindWindowA
GetDesktopWindow
UnregisterClassA
SystemParametersInfoA
SetCursor
SetClipboardData
SetCapture
ClipCursor
GetClipboardData
SetFocus
CreateWindowExA
GetMouseMovePointsEx
FlashWindow
DefWindowProcA
GetMessageTime
RegisterClassA
AdjustWindowRect
MessageBoxW
GetMessageExtraInfo
MonitorFromPoint
EnumDisplayDevicesA
LoadCursorA
GetDC
SetWindowPos
PostMessageA
EnumDisplayMonitors
ScreenToClient
GetSystemMetrics
GetAsyncKeyState
OpenClipboard
GetCapture
DispatchMessageW
SetWindowLongA
LoadIconA
GetClientRect
PostQuitMessage
SetForegroundWindow
ClientToScreen
CloseClipboard
EmptyClipboard
ChangeDisplaySettingsA
RegisterClassW
MapWindowPoints
MessageBoxA
GetMonitorInfoA
EnumDisplaySettingsA
PeekMessageW
GetForegroundWindow
gdi32
CreateSolidBrush
ChoosePixelFormat
GetDeviceCaps
DescribePixelFormat
SetPixelFormat
SwapBuffers
advapi32
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
CryptImportKey
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptEncrypt
CryptDestroyKey
shell32
SHGetFolderPathW
DragFinish
ShellExecuteW
ShellExecuteA
DragQueryFileA
ole32
CoCreateInstance
CoUninitialize
CoInitialize
configtool
?TTDialogShow@@YA_NXZ
?TTDialogQuit@@YAXXZ
?REFRESH_TT_WINDOW@@YAXXZ
?RegisterVector@CTuningTool@@QEAAXPEAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_K201W4E_TYPES@VarInfo@@@Z
?RemoveBranch@CTuningTool@@QEAAXPEAVBranch@@_N1@Z
?RegisterVariable@CTuningTool@@QEAAXPEAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4E_TYPES@VarInfo@@_K3PEAVBranch@@1@Z
?TT_ADD_BRANCH@@YAPEAXPEBDPEAXPEADP6AX1PEAVBranch@@@Z1@Z
?GetInstance@CTuningTool@@SAPEAV1@XZ
opengl32
glGetString
glGetError
glIsEnabled
wglMakeCurrent
wglDeleteContext
wglCreateContext
glTexSubImage2D
glGetTexImage
glTexImage2D
glTexParameterf
glHint
glTexParameteri
glTexParameterfv
glGenTextures
glClearStencil
glGetIntegerv
glDrawBuffer
glDepthFunc
glPixelStorei
glGetFloatv
glDisable
glClearDepth
glDrawElements
glDrawArrays
glClearColor
glReadBuffer
glDeleteTextures
glColorMask
glReadPixels
glBlendFunc
glStencilFunc
glLineWidth
glCopyTexSubImage2D
glScissor
glDepthMask
glCullFace
glEnable
glBindTexture
glPolygonMode
glPointSize
glViewport
glStencilOp
glClear
glTexEnvf
glStencilMask
wglGetProcAddress
dbghelp
MiniDumpWriteDump
wintrust
WinVerifyTrust
crypt32
CertCloseStore
CryptMsgGetParam
CertFindCertificateInStore
CertGetNameStringA
CryptQueryObject
CryptMsgClose
CertFreeCertificateContext
shlwapi
PathStripPathA
imm32
ImmSetCompositionWindow
ImmSetCandidateWindow
ImmReleaseContext
ImmGetContext
ImmAssociateContextEx
oleaut32
GetErrorInfo
Exports
Exports
AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
Sections
.text Size: 6.8MB - Virtual size: 6.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 39KB - Virtual size: 12.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 282KB - Virtual size: 281KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 41KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 29KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ