d:\Soldner\SecretOps\Game\bin\ReleasePDB\ColObjects_Plugin.pdb
Static task
static1
Behavioral task
behavioral1
Sample
ce153d7c951617eebeef483473d2dbf01466ebfbf8d447ce21d74387fe6f5450.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ce153d7c951617eebeef483473d2dbf01466ebfbf8d447ce21d74387fe6f5450.dll
Resource
win10v2004-20240226-en
General
-
Target
ce153d7c951617eebeef483473d2dbf01466ebfbf8d447ce21d74387fe6f5450
-
Size
56KB
-
MD5
31b1f34f91a39475bf7d28e6f82948d0
-
SHA1
504221341e2042939dfe957d3026a823b368b757
-
SHA256
ce153d7c951617eebeef483473d2dbf01466ebfbf8d447ce21d74387fe6f5450
-
SHA512
ec821853438cf6382d4f1bb829739b96a6812864e02bfdfea8b1f44cbedb8868b4e11a7872fb7781a7dbf46b389307a6164c9142e90de14a861ef305899723f9
-
SSDEEP
768:fQvXJk85HUZ86og+CK1Gkw5RccghbfnV1Ds:fQfLjCbKBcghVi
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ce153d7c951617eebeef483473d2dbf01466ebfbf8d447ce21d74387fe6f5450
Files
-
ce153d7c951617eebeef483473d2dbf01466ebfbf8d447ce21d74387fe6f5450.dll windows:4 windows x86 arch:x86
1ca26756f430fb664b7ea26df5a779e0
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
memorymanager
?MemMemory@memory@@3VCMemoryManager@1@A
?FreePooled@CMemoryManager@memory@@QAEXPAX@Z
?AllocPooled@CMemoryManager@memory@@QAEPAXII@Z
objectfactory
?GetMaterialTypeName@IContact@col@@SAPBDH@Z
?WingsAssert@CApp@@QAAXHPBDZZ
?app@@3VCApp@@A
?m_pSingleton@CObjectDataBase@@2PAV1@A
?osGlobal@base@@3USosGlobal@1@A
??1CCollisionObject@col@@UAE@XZ
?EventHandler@CCollisionObject@col@@UAEXPBUT_SGP3DOBJECT@gdb@@J@Z
?RenderDebug@CCollisionObject@col@@UBEXPBXHPBD@Z
?GetImpactTypeString@CCollisionObject@col@@UBEPBDW4EImpactType@SImpact@2@@Z
?IsPerformingPhysicalImpact@ICollisionObject@col@@UBE_NXZ
?EnablePhysicalImpact@ICollisionObject@col@@UAEX_N@Z
?IsBlocking@CCollisionObject@col@@UBE_NXZ
?getContactFlags@CCollisionObject@col@@UBEIXZ
?GetImpactEnergy@CCollisionObject@col@@UBEMW4EImpactType@SImpact@2@@Z
?GetResistance@CCollisionObject@col@@UBEMPBUSImpact@2@@Z
?LineTextureTest@CCollisionObject@col@@UAEHW4EGridLineMode@2@ABVCWorldCoordinate@base@@1PAPAVIContact@2@PAVCCollisionList@2@@Z
?LineCollisionTest@CCollisionObject@col@@UAEHW4EGridLineMode@2@W4ECollisionLOD@2@ABVCWorldCoordinate@base@@2PAPAVIContact@2@PAVCCollisionList@2@@Z
??1IContact@col@@UAE@XZ
??0CCollisionObject@col@@QAE@JH@Z
?GetSplashDamageCoveringResistance@CCollisionObject@col@@UAEMABUSImpact@2@@Z
??4SVector3D@base@@QAEAAV01@ABV01@@Z
??0IContact@col@@QAE@XZ
??0CString@base@@QAE@PBD@Z
?compareIgnoreCase@CString@base@@QBEHPBD@Z
??1CString@base@@QAE@XZ
?IsInterfaceSupported@IWings3DObject@@QAE_NJ@Z
?FromPosition@CWorldCoordinate@base@@QAEAAV12@ABVVector3@Mgc@@@Z
??0SDVector3D@base@@QAE@NNN@Z
??0SVector3D@base@@QAE@AAUSDVector3D@1@@Z
??0SQuaternion@base@@QAE@XZ
?m_pSingleton@ICollisionGrid@@2PAV1@A
?GetFloatVector@CWorldCoordinate@base@@QBE?AVVector3@Mgc@@XZ
??0SVector3D@base@@QAE@QBM@Z
?Normalize@SVector3D@base@@QAEXXZ
?Magnitude@SVector3D@base@@QBEMXZ
?m_pSingleton@IWings3D@@2PAV1@A
?GetRelativePosition@CWorldCoordinate@base@@QBEXABVVector3@Mgc@@AAV34@@Z
??4SVector3D@base@@QAEAAV01@ABVVector3@Mgc@@@Z
??0SVector3D@base@@QAE@MMM@Z
??2IContact@col@@SAPAXI@Z
??3IContact@col@@SAXPAX@Z
?m_pSingleton@IImpostorManager@@2PAV1@A
?m_pSingleton@CDecalMgr@@2PAV1@A
?removeDecals@CDecalMgr@@QAEXUSOwnerID@@@Z
?OnImpact@CCollisionObject@col@@UAEXAAUSImpact@2@@Z
?wlGlobal@base@@3USGlobal@1@A
?ObjectFactory@base@@3VCObjectFactory@1@A
?WComQueryInterface@CObjectFactory@base@@UAEHW4EINTERFACEID@2@PAPAXPAD@Z
??0SVector3D@base@@QAE@XZ
?m_pSingleton@IGameDataBase@gdb@@2PAV12@A
?GetObjectA@IWings3DObject@@QAEXAAW4EFileFormat@base@@PAPAX@Z
?AddRef@IWCom@base@@UAEXXZ
?Release@IWCom@base@@UAEXXZ
?QueryInterface@IWCom@base@@UBEXIPAPAX@Z
terraingame_plugin
?getFenceSegment@CFenceLine@tob@@QBEABUSFenceSegment@2@I@Z
?getFenceLine@CFence@tob@@QBEABVCFenceLine@2@I@Z
?determineNearestFenceSegment@CFence@tob@@QBE_NABVSVector3D@base@@AAI1PAM@Z
?getScenePos@ATerrainObject@tob@@QBEXAAVSVector3D@base@@@Z
?applyDamage@CFence@tob@@QAEXIIIIW4EDamagePropagation@12@@Z
?getLightDamageThresholdEnergy@CFence@tob@@QBEMXZ
?getHeavyDamageThresholdEnergy@CFence@tob@@QBEMXZ
?setWindowState@CBuilding@tob@@QAEXHH@Z
?getResistance@CFence@tob@@QBEMXZ
?getStemWidth@CTree@tob@@QBEMXZ
?fall@CTree@tob@@QAEXMM@Z
?remove@CTree@tob@@QAEX_N@Z
?getTreeState@CTree@tob@@QBE?AW4ETreeState@12@XZ
?getTreeStateName@CTree@tob@@QBEPBDXZ
?applyDamage@CBuilding@tob@@QAEXHHHH@Z
?fenceSegmentLengthInMeters@tob@@3NB
?applySplashDamage@CBuilding@tob@@QAEXPBUT_SGP3DOBJECT@gdb@@ABVCWorldCoordinate@base@@ABMH@Z
soeldner3dobjects_plugin
??0CFenceContact@s3dobj@@QAE@XZ
??1CFenceContact@s3dobj@@UAE@XZ
msvcp71
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??0_Lockit@std@@QAE@H@Z
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?id@?$ctype@G@std@@2V0locale@2@A
?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@@Z
?id@?$ctype@D@std@@2V0locale@2@A
??Bid@locale@std@@QAEIXZ
?_Getfacet@locale@std@@QBEPBVfacet@12@I@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@@Z
?_Incref@facet@locale@std@@QAEXXZ
?_Register@facet@locale@std@@QAEXXZ
??1_Lockit@std@@QAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Lock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEXXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?widen@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEGD@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?fill@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEGXZ
?sputc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGG@Z
??A?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEABGI@Z
?to_int_type@?$char_traits@G@std@@SAGABG@Z
?sbumpc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGXZ
?size@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
?erase@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@II@Z
?max_size@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
?sgetc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGXZ
?eof@?$char_traits@G@std@@SAGXZ
?eq_int_type@?$char_traits@G@std@@SA_NABG0@Z
?to_char_type@?$char_traits@G@std@@SAGABG@Z
?is@?$ctype@G@std@@QBE_NFG@Z
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@IG@Z
?snextc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGXZ
?setstate@?$basic_ios@GU?$char_traits@G@std@@@std@@QAEXH_N@Z
?flags@ios_base@std@@QBEHXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
?to_int_type@?$char_traits@D@std@@SAHABD@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
??1locale@std@@QAE@XZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?width@ios_base@std@@QBEHXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?eof@?$char_traits@D@std@@SAHXZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?to_char_type@?$char_traits@D@std@@SADABH@Z
?is@?$ctype@D@std@@QBE_NFD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?width@ios_base@std@@QAEHH@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?_Ipfx@?$basic_istream@GU?$char_traits@G@std@@@std@@QAE_N_N@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ
?good@ios_base@std@@QBE_NXZ
?tie@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEPAV?$basic_ostream@GU?$char_traits@G@std@@@2@XZ
?flush@?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV12@XZ
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@G@Z
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG@Z
?_Unlock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEXXZ
?rdbuf@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEPAV?$basic_streambuf@GU?$char_traits@G@std@@@2@XZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
msvcr71
sprintf
_purecall
_CIacos
??0exception@@QAE@ABV0@@Z
??0bad_cast@@QAE@ABV0@@Z
??1bad_cast@@UAE@XZ
??0bad_cast@@QAE@PBD@Z
_CxxThrowException
__dllonexit
srand
_onexit
?terminate@@YAXXZ
_except_handler3
??1type_info@@UAE@XZ
free
_initterm
malloc
_adjust_fdiv
__CppXcptFilter
rand
__CxxFrameHandler
kernel32
DisableThreadLibraryCalls
Exports
Exports
Free
FreePythonExtension
Init
InitPythonExtension
Sections
.text Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 20KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 720B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ