Skate[.]crack[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Skate.crack.exe
Size

96.5MB
MD5

a6f494837095363510745ac735711607
SHA1

ddb37b9e1c84d3acb367d0f6033b28406f6c7db8
SHA256

c652e7f1af516ce84d8960c73dbd47ebe92775a16f7e68f8498ff0e489bd3a0e
SHA512

00898b4c8d044a8dd2b2de1e1161b8df94d4f6b0f74d3d4220935a2f8d8ca8f82f17d0b32ac626466e759098f32f1af0bf582d98ae71590bcf3886128ebf49f3
SSDEEP

786432:o9kLRbaFXRORq00PTDEy+4CYsm22wCYQ:o862uP3EzhV2w

Score

1^/10

Malware Config

Signatures

Files

Skate.crack.exe
.exe windows:6 windows x64 arch:x64

5153a3bfdee76c80d33b16eab3dadf97

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0b:7b:4b:1b:8c:aa:eb:b0:2b:ba:a9:ea:d9:a9:0a:ae
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

23/08/2021, 00:00

Not After

23/08/2022, 23:59

Subject

CN=Electronic Arts\, Inc.,OU=FULL CIRCLE,O=Electronic Arts\, Inc.,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

eb:5c:79:50:09:05:01:b1:79:c7:4d:5f:1e:18:56:59:97:df:79:ff
Signer

Actual PE Digest

eb:5c:79:50:09:05:01:b1:79:c7:4d:5f:1e:18:56:59:97:df:79:ff

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\p4\TnT\Local\Bin\DelMar\Win64\final\DelMar.Main_Win64_final.pdb

Imports

user32

GetFocus
EmptyClipboard
SetClipboardData
GetDlgCtrlID
GetDlgItem
CreateDialogParamA
DestroyWindow
UnregisterClassA
DestroyIcon
DispatchMessageA
GetMessageA
DrawFrameControl
MessageBoxA
SetWindowLongPtrW
CallWindowProcA
RegisterRawInputDevices
CallWindowProcW
GetWindow
GetMonitorInfoA
MonitorFromWindow
EnumDisplaySettingsA
GetWindowThreadProcessId
EnumWindows
GetDesktopWindow
SetWindowLongPtrA
SetWindowLongA
GetWindowLongA
OffsetRect
CopyRect
GetWindowRect
GetClientRect
GetWindowTextLengthA
GetWindowTextA
SetWindowTextW
SetWindowTextA
GetForegroundWindow
UpdateWindow
SetTimer
GetKeyState
SetFocus
IsClipboardFormatAvailable
GetClipboardData
ChangeClipboardChain
CloseClipboard
OpenClipboard
IsWindowVisible
SetWindowPos
MoveWindow
ShowWindow
IsWindow
CreateWindowExW
EnableWindow
RegisterClassExW
PostQuitMessage
DefWindowProcW
DefWindowProcA
AttachThreadInput
PostThreadMessageA
SendMessageW
SendMessageA
DispatchMessageW
TranslateMessage
GetMessageW
LoadStringA
IsDialogMessageA
MonitorFromPoint
GetSystemMetrics
EnumDisplayDevicesA
IsIconic
SendInput
GetKeyboardLayout
GetRawInputData
GetRawInputDeviceInfoA
TrackMouseEvent
PostMessageA
PostMessageW
SetActiveWindow
SetForegroundWindow
GetAsyncKeyState
GetKeyboardState
GetKeyNameTextW
MapVirtualKeyA
ShowCursor
SetCursorPos
SetCursor
GetCursorPos
GetCursor
ClientToScreen
ScreenToClient
ClipCursor
SystemParametersInfoA
GetWindowInfo
GetDoubleClickTime
GetWindowPlacement
CreatePopupMenu
DestroyMenu
AppendMenuA
TrackPopupMenu
DrawTextA
DrawTextW
InvalidateRect
RedrawWindow
MapWindowPoints
GetSysColor
GetSysColorBrush
DrawFocusRect
FillRect
SetWindowPlacement
IsZoomed
EnumDisplaySettingsW
EnumDisplayDevicesW
SetCapture
ReleaseCapture
LoadBitmapA
SetWinEventHook
InflateRect
GetWindowLongPtrA
CreateWindowExA
GetParent
LoadIconA
LoadCursorA
PeekMessageA

msvcp140

_Cnd_timedwait
_Cnd_wait
_Cnd_destroy_in_situ
_Cnd_init_in_situ
_Mtx_unlock
_Mtx_trylock
_Mtx_lock
_Mtx_current_owns
_Mtx_destroy_in_situ
_Mtx_init_in_situ
_Thrd_id
_Thrd_yield
_Thrd_sleep
_Thrd_join
_Query_perf_frequency
_Query_perf_counter
_Xtime_get_ticks
?_Xout_of_range@std@@YAXPEBD@Z
?uncaught_exception@std@@YA_NXZ
_Cnd_signal
_Cnd_do_broadcast_at_thread_exit
_Inf
_Nan
_FInf
?_Xlength_error@std@@YAXPEBD@Z
?_Raise_handler@std@@3P6AXAEBVexception@stdext@@@ZEA
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Throw_C_error@std@@YAXH@Z
?_Throw_Cpp_error@std@@YAXH@Z
_FSnan
_Cnd_broadcast
?_Syserror_map@std@@YAPEBDH@Z
_FNan

kernel32

ExitProcess
InitializeConditionVariable
LoadLibraryExW
WakeConditionVariable
SleepConditionVariableCS
FlushInstructionCache
EncodePointer
OutputDebugStringW
GetStartupInfoW
IsProcessorFeaturePresent
UnhandledExceptionFilter
CreateEventW
MoveFileW
CopyFileW
SetFileInformationByHandle
GetCurrentDirectoryW
GetCurrentDirectoryA
OpenEventA
WideCharToMultiByte
ProcessIdToSessionId
SetThreadExecutionState
FindNextFileA
K32GetModuleBaseNameW
lstrcmpiW
GetLocaleInfoW
FileTimeToLocalFileTime
K32GetModuleInformation
K32GetModuleFileNameExA
K32GetModuleBaseNameA
IsBadStringPtrA
Process32NextW
Process32FirstW
K32GetMappedFileNameW
LocalAlloc
GetNativeSystemInfo
QueryDosDeviceW
GetModuleHandleA
QueryPerformanceCounter
IsDebuggerPresent
SetErrorMode
VirtualAlloc
VirtualFree
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetLastError
GetCurrentThreadId
SetPriorityClass
GlobalUnlock
GlobalLock
CloseHandle
WaitForSingleObject
WaitForSingleObjectEx
CreateEventExA
SetLastError
QueryPerformanceFrequency
InitializeSRWLock
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
TryEnterCriticalSection
TerminateProcess
LoadLibraryExA
LocalFree
FormatMessageA
OutputDebugStringA
VirtualProtect
VirtualQuery
SleepEx
SuspendThread
ResumeThread
GetSystemInfo
GetTickCount
K32GetProcessMemoryInfo
GetStdHandle
GetCommandLineA
CreateFileA
ReadFile
DuplicateHandle
SetEvent
ResetEvent
CreateEventA
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
QueueUserAPC
GetCurrentThread
GetExitCodeThread
GlobalMemoryStatusEx
GetSystemTime
GetSystemTimeAsFileTime
MapViewOfFile
UnmapViewOfFile
GetModuleFileNameA
CreateFileMappingA
K32EnumProcessModules
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetEnvironmentVariableA
GetFileAttributesA
WriteFile
RaiseException
GetOverlappedResult
WaitForMultipleObjects
CreateProcessA
GetModuleHandleExA
CreateToolhelp32Snapshot
Process32First
Process32Next
GetCurrentProcessId
SetUnhandledExceptionFilter
GetWindowsDirectoryA
OpenThread
OpenProcess
QueryThreadCycleTime
QueryProcessCycleTime
QueryFullProcessImageNameA
Thread32First
Thread32Next
GetThreadContext
SetWaitableTimer
SetThreadPriority
GetThreadPriority
CreateWaitableTimerA
Sleep
K32EnumProcesses
CreateDirectoryA
DeleteFileA
FindClose
FindFirstFileA
GetFileInformationByHandle
SetNamedPipeHandleState
CreateMutexA
GetLocalTime
GetComputerNameExA
GetModuleHandleW
LoadLibraryW
OpenFileMappingA
GetStartupInfoA
DecodePointer
InitializeCriticalSectionEx
GlobalAlloc
GlobalFree
MulDiv
lstrlenW
MultiByteToWideChar
GetComputerNameA
GetTempPathA
GetTempFileNameA
GetExitCodeProcess
GetGeoInfoA
GetUserGeoID
GetUserDefaultLangID
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
LocalFileTimeToFileTime
SetFileAttributesA
SetFileTime
ContinueDebugEvent
WaitForDebugEvent
CreatePipe
PeekNamedPipe
CreateProcessW
GetThreadId
ReadProcessMemory
GetModuleFileNameW
DosDateTimeToFileTime
SetConsoleCtrlHandler
CreateDirectoryW
CreateFileW
DeleteFileW
FindFirstFileW
FindNextFileW
FlushFileBuffers
GetFileAttributesExW
GetFileSizeEx
GetLogicalDriveStringsW
GetLongPathNameW
RemoveDirectoryW
SetEndOfFile
SetFileAttributesW
SetFilePointerEx
GetTempPathW
CreateIoCompletionPort
GetQueuedCompletionStatus
GetQueuedCompletionStatusEx
PostQueuedCompletionStatus
GetWindowsDirectoryW
GetVersionExA
SetEnvironmentVariableA
SetEnvironmentVariableW
HeapAlloc
HeapFree
GetProcessHeap
ReleaseMutex
GetPriorityClass
FileTimeToSystemTime
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
GetLocaleInfoA
InitializeCriticalSection
ReleaseSemaphore
SwitchToThread
SetThreadPriorityBoost
SetThreadIdealProcessor
GetTickCount64
GetProcessAffinityMask
SetThreadAffinityMask
CreateSemaphoreA
AddVectoredExceptionHandler
RemoveVectoredExceptionHandler
GetFileAttributesW
GetFileSize
GetFileType
lstrcmpiA

secur32

GetUserNameExA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

netapi32

Netbios

dwmapi

ord102

vcruntime140

memmove
memset
memcpy
memcmp
__std_terminate
strchr
strstr
_purecall
strrchr
_CxxThrowException
__C_specific_handler
_set_purecall_handler
longjmp
_get_purecall_handler
wcsstr
memchr
__std_exception_copy
__std_exception_destroy
__intrinsic_setjmp
__current_exception
__current_exception_context

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-string-l1-1-0

ispunct
isgraph
iscntrl
_strnicmp
islower
isspace
strcpy_s
isalnum
_strdup
isprint
strtok_s
strnlen
isupper
isxdigit
tolower
isalpha
strspn
strpbrk
strcoll
strncmp
strncat
strtok
isdigit
strcmp
toupper
_stricmp
strncpy
wcsncpy

api-ms-win-crt-math-l1-1-0

pow
expf
fmodf
atan2f
tanf
atanf
asinf
acosf
modff
fmod
acos
sqrtf
atanhf
logf
asinhf
acoshf
atan
atan2
cos
cosh
coshf
sin
powf
log10f
atanh
copysignf
log
asinh
roundf
sinh
ldexp
sinhf
_fdclass
tan
acosh
sqrt
floorf
floor
tanh
exp
ceilf
round
ceil
__setusermatherr
fminf
fmaxf
sinf
log2f
frexp
_dclass
log2
expm1f
cosf
tanhf
nextafterf
exp2f
truncf
_finite
rintf
log10
asin

api-ms-win-crt-runtime-l1-1-0

terminate
_register_onexit_function
_crt_atexit
_cexit
_seh_filter_exe
_set_app_type
_get_narrow_winmain_command_line
_beginthreadex
system
_initterm_e
_exit
_errno
_initialize_narrow_environment
_c_exit
_register_thread_local_exe_atexit_callback
_invalid_parameter_noinfo
_invoke_watson
_invalid_parameter_noinfo_noreturn
_configure_narrow_argv
_initialize_onexit_table
strerror
_resetstkoflw
exit
_initterm
_endthreadex
abort
_controlfp

api-ms-win-crt-convert-l1-1-0

wcstod
wcstombs
_fcvt_s
_itoa_s
atoi
_ecvt
_strtoui64
atof
strtod
_strtoi64
strtol
atol
strtoul
strtoll
mbstowcs

api-ms-win-crt-environment-l1-1-0

getenv
_dupenv_s
_wgetcwd

api-ms-win-crt-stdio-l1-1-0

fseek
__stdio_common_vswprintf
_close
_lseek
__stdio_common_vsprintf_s
_write
_sopen_dispatch
setvbuf
__stdio_common_vsnprintf_s
tmpnam
__stdio_common_vswprintf_s
_popen
_set_fmode
__p__commode
fflush
_pclose
getc
_ftelli64
_fseeki64
freopen
clearerr
__stdio_common_vswscanf
__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vsprintf
ftell
_fsopen
fwrite
fclose
ferror
ungetc
fread
fopen
fputs
fgets
feof
__stdio_common_vsscanf
_read

api-ms-win-crt-time-l1-1-0

_difftime64
_localtime64
_gmtime64_s
_tzset
clock
_time64
_gmtime64
_get_tzname
_localtime64_s
strftime
_ftime64_s
_mktime64
__timezone
__daylight
_ftime64

api-ms-win-crt-heap-l1-1-0

_msize
_set_new_mode
_aligned_free
_aligned_malloc
realloc
calloc
malloc
_recalloc
free

api-ms-win-crt-multibyte-l1-1-0

_ismbblead

api-ms-win-crt-utility-l1-1-0

rand
bsearch
qsort
srand

api-ms-win-crt-filesystem-l1-1-0

rename
_wsplitpath_s
remove
_fullpath

api-ms-win-crt-locale-l1-1-0

localeconv
_configthreadlocale
setlocale

advapi32

GetUserNameA
RegOpenKeyExA
RegQueryValueExA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
GetCurrentHwProfileA
RegCloseKey
RegOpenKeyExW
RegQueryValueExW

bcrypt

BCryptOpenAlgorithmProvider
BCryptGenRandom
BCryptCloseAlgorithmProvider
BCryptImportKeyPair
BCryptDestroyKey
BCryptVerifySignature

dbghelp

SymSetOptions
MiniDumpWriteDump
SymGetLineFromAddr64
UnDecorateSymbolName
SymInitialize
SymGetSymFromAddr64
SymGetModuleInfo64
SymGetModuleBase64
SymFunctionTableAccess64
StackWalk64
SymLoadModuleEx
SymUnloadModule64
SymFromAddr
SymLoadModule64
SymLoadModuleExW
SymCleanup

libcrypto-3

EVP_sha256
EVP_MD_CTX_free
EVP_PKEY_free
PEM_read_bio_PrivateKey
EVP_DigestSignInit
EVP_MD_CTX_new
RSA_generate_key_ex
RSA_new
PEM_write_bio_PUBKEY
PEM_write_bio_PrivateKey
EVP_DigestSignFinal
EVP_DigestSignUpdate
BIO_new_mem_buf
EVP_PKEY_assign
BN_set_word
BIO_free_all
EVP_PKEY_new
BN_new
BIO_new
BIO_read
BIO_ctrl
BIO_s_mem

winpixeventruntime

PIXGetThreadInfo
PIXEventsReplaceBlock

amd_ags_x64

agsDriverExtensionsDX11_IASetPrimitiveTopology
agsDriverExtensionsDX11_SetDepthBounds
agsDriverExtensionsDX11_BeginUAVOverlap
agsDriverExtensionsDX11_EndUAVOverlap
agsGetVersionNumber
agsInitialize
agsDeInitialize
agsDriverExtensionsDX11_CreateDevice
agsDriverExtensionsDX11_DestroyDevice

d3d11

D3D11CreateDevice

d3d9

D3DPERF_BeginEvent
D3DPERF_SetMarker
D3DPERF_GetStatus
D3DPERF_EndEvent

dinput8

DirectInput8Create

dxgi

CreateDXGIFactory1

imm32

ImmDisableIME

ole32

CoInitializeEx
CoSetProxyBlanket
CoUninitialize
CoInitializeSecurity
CoCreateGuid
CoTaskMemFree
CoCreateInstance
CoInitialize

oleaut32

SysAllocString
SysFreeString
VariantInit
VariantClear

shell32

ShellExecuteExA
ShellExecuteA
SHGetFolderPathW

winmm

waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutReset
waveOutMessage
waveOutClose
waveOutOpen
waveOutSetVolume
waveInGetNumDevs
waveInGetDevCapsA
waveInOpen
waveInClose
waveOutGetDevCapsA
waveInStart
waveInStop
waveInReset
waveInMessage
waveOutGetNumDevs
timeGetTime
waveInPrepareHeader
timeGetDevCaps
timeBeginPeriod
timeEndPeriod
waveInUnprepareHeader
waveInAddBuffer

ws2_32

ioctlsocket
connect
getsockname
closesocket
bind
accept
__WSAFDIsSet
select
ntohs
ntohl
htons
htonl
getpeername
getsockopt
listen
recv
recvfrom
sendto
setsockopt
shutdown
socket
gethostname
WSAStartup
WSACleanup
WSAGetLastError
WSACloseEvent
WSACreateEvent
WSAGetOverlappedResult
WSAIoctl
WSARecv
WSARecvFrom
WSAResetEvent
WSASetEvent
WSASocketW
WSAWaitForMultipleEvents
getaddrinfo
freeaddrinfo
inet_pton
inet_ntoa
gethostbyname
WSASocketA
WSASetLastError
send
inet_addr

wtsapi32

WTSRegisterSessionNotification
WTSUnRegisterSessionNotification

gdi32

DeleteObject
LineTo
SelectObject
SetBkColor
SetBkMode
SetPixel
SetTextColor
MoveToEx
DeleteDC
SetDCBrushColor
BitBlt
CreateCompatibleDC
SetMapMode
GetObjectA
SetViewportExtEx
SetWindowExtEx
CreateSolidBrush
ExtTextOutA
GetStockObject
CreatePen

iphlpapi

IcmpCloseHandle
IcmpCreateFile
IcmpSendEcho
GetAdaptersAddresses

mfplat

MFCreateSample
MFShutdown
MFStartup
MFTEnumEx
MFCreateMediaType

usp10

ScriptItemize
ScriptBreak

Exports

Exports

?isGlimpseEnabled@@YA_NXZ
?m_permLUT@PerlinHash@math@fb@@0QBEB
AmdPowerXpressRequestHighPerformance
D3D12SDKPath
D3D12SDKVersion
GetDenuvoTicketLocation
GetDenuvoTimeTicketRequest
IsGameRuntime
NvOptimusEnablement

Sections

.text
Size: 60.9MB - Virtual size: 60.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ctr
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16.4MB - Virtual size: 16.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.6MB - Virtual size: 51.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

logevent
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

typeinfo
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fieldinf
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ooa
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5153a3bfdee76c80d33b16eab3dadf97

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0b:7b:4b:1b:8c:aa:eb:b0:2b:ba:a9:ea:d9:a9:0a:aeCertificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

eb:5c:79:50:09:05:01:b1:79:c7:4d:5f:1e:18:56:59:97:df:79:ffSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

user32

msvcp140

kernel32

secur32

version

netapi32

dwmapi

vcruntime140

vcruntime140_1

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-multibyte-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-locale-l1-1-0

advapi32

bcrypt

dbghelp

libcrypto-3

winpixeventruntime

amd_ags_x64

d3d11

d3d9

dinput8

dxgi

imm32

ole32

oleaut32

shell32

winmm

ws2_32

wtsapi32

gdi32

iphlpapi

mfplat

usp10

Exports

Exports

Sections

.text Size: 60.9MB - Virtual size: 60.9MB

ctr Size: 6.4MB - Virtual size: 6.4MB

.rdata Size: 16.4MB - Virtual size: 16.4MB

.data Size: 2.6MB - Virtual size: 51.1MB

.pdata Size: 3.9MB - Virtual size: 3.9MB

logevent Size: 1.9MB - Virtual size: 1.9MB

typeinfo Size: 2.8MB - Virtual size: 2.8MB

fieldinf Size: 1.2MB - Virtual size: 1.2MB

_RDATA Size: 176KB - Virtual size: 175KB

.rodata Size: 3KB - Virtual size: 3KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0b:7b:4b:1b:8c:aa:eb:b0:2b:ba:a9:ea:d9:a9:0a:ae
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

eb:5c:79:50:09:05:01:b1:79:c7:4d:5f:1e:18:56:59:97:df:79:ff
Signer

.text
Size: 60.9MB - Virtual size: 60.9MB

ctr
Size: 6.4MB - Virtual size: 6.4MB

.rdata
Size: 16.4MB - Virtual size: 16.4MB

.data
Size: 2.6MB - Virtual size: 51.1MB

.pdata
Size: 3.9MB - Virtual size: 3.9MB

logevent
Size: 1.9MB - Virtual size: 1.9MB

typeinfo
Size: 2.8MB - Virtual size: 2.8MB

fieldinf
Size: 1.2MB - Virtual size: 1.2MB

_RDATA
Size: 176KB - Virtual size: 175KB

.rodata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 176KB - Virtual size: 176KB

.ooa
Size: 2KB - Virtual size: 1KB