6fb992907e88b21808fd37c0a199651605759de9639845bc2bc60ac4628bde83

Sharing

Copy URL

Twitter E-mail

General

Target

6fb992907e88b21808fd37c0a199651605759de9639845bc2bc60ac4628bde83
Size

5.4MB
MD5

8dc15febb9f933d4570dd20fcaf9f768
SHA1

15cbd03cc99b9be093b91fdcf9157fea336c0746
SHA256

6fb992907e88b21808fd37c0a199651605759de9639845bc2bc60ac4628bde83
SHA512

84cdbec3cbc988849107b9432590ba2ead3c6ef8ba99594e21e039165bfc05ec23f013448559ba3fb1fac9adb4931489b98d072722b84a63de2d24d7abaec260
SSDEEP

49152:PP/bJUfirl/Gd0+Wsi7ltWl/vOdVTUagBMLH79mzGdF9zm4:XdUgtNIi7ltWl/W7UakzGo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fb992907e88b21808fd37c0a199651605759de9639845bc2bc60ac4628bde83

Files

6fb992907e88b21808fd37c0a199651605759de9639845bc2bc60ac4628bde83
.dll windows:4 windows x86 arch:x86

054a644e9a9eefc751d35513de8dde41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\bld\cg\rel2.2\src\cglang\runtime\bin\Windows_vc8_release\cg.pdb

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetLastError
HeapFree
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapReAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
RtlUnwind
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
WriteFile
GetStdHandle
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
SetHandleCount
GetFileType
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
HeapSize
CloseHandle
SetFilePointer
MultiByteToWideChar
ReadFile
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
WideCharToMultiByte
LCMapStringW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RaiseException
CreateFileA
SetStdHandle
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
VirtualQuery

Exports

Exports

cgAddStateEnumerant
cgCallStateResetCallback
cgCallStateSetCallback
cgCallStateValidateCallback
cgCombinePrograms
cgCombinePrograms2
cgCombinePrograms3
cgCompileProgram
cgConnectParameter
cgCopyEffect
cgCopyProgram
cgCreateArraySamplerState
cgCreateArrayState
cgCreateBuffer
cgCreateContext
cgCreateEffect
cgCreateEffectAnnotation
cgCreateEffectFromFile
cgCreateEffectParameter
cgCreateEffectParameterArray
cgCreateEffectParameterMultiDimArray
cgCreateObj
cgCreateObjFromFile
cgCreateParameter
cgCreateParameterAnnotation
cgCreateParameterArray
cgCreateParameterMultiDimArray
cgCreatePass
cgCreatePassAnnotation
cgCreateProgram
cgCreateProgramAnnotation
cgCreateProgramFromEffect
cgCreateProgramFromFile
cgCreateSamplerState
cgCreateSamplerStateAssignment
cgCreateState
cgCreateStateAssignment
cgCreateStateAssignmentIndex
cgCreateTechnique
cgCreateTechniqueAnnotation
cgDestroyBuffer
cgDestroyContext
cgDestroyEffect
cgDestroyObj
cgDestroyParameter
cgDestroyProgram
cgDisconnectParameter
cgEvaluateProgram
cgGetAnnotationName
cgGetAnnotationType
cgGetArrayDimension
cgGetArrayParameter
cgGetArraySize
cgGetArrayTotalSize
cgGetArrayType
cgGetAutoCompile
cgGetBoolAnnotationValues
cgGetBoolStateAssignmentValues
cgGetBooleanAnnotationValues
cgGetBufferSize
cgGetCompilerIncludeCallback
cgGetConnectedParameter
cgGetConnectedStateAssignmentParameter
cgGetConnectedToParameter
cgGetDependentAnnotationParameter
cgGetDependentStateAssignmentParameter
cgGetDomain
cgGetDomainString
cgGetEffectContext
cgGetEffectName
cgGetEffectParameterBySemantic
cgGetEnum
cgGetEnumString
cgGetError
cgGetErrorCallback
cgGetErrorHandler
cgGetErrorString
cgGetFirstDependentParameter
cgGetFirstEffect
cgGetFirstEffectAnnotation
cgGetFirstEffectParameter
cgGetFirstError
cgGetFirstLeafEffectParameter
cgGetFirstLeafParameter
cgGetFirstParameter
cgGetFirstParameterAnnotation
cgGetFirstPass
cgGetFirstPassAnnotation
cgGetFirstProgram
cgGetFirstProgramAnnotation
cgGetFirstSamplerState
cgGetFirstSamplerStateAssignment
cgGetFirstState
cgGetFirstStateAssignment
cgGetFirstStructParameter
cgGetFirstTechnique
cgGetFirstTechniqueAnnotation
cgGetFloatAnnotationValues
cgGetFloatStateAssignmentValues
cgGetIntAnnotationValues
cgGetIntStateAssignmentValues
cgGetLastErrorString
cgGetLastListing
cgGetLockingPolicy
cgGetMatrixParameterOrder
cgGetMatrixParameterdc
cgGetMatrixParameterdr
cgGetMatrixParameterfc
cgGetMatrixParameterfr
cgGetMatrixParameteric
cgGetMatrixParameterir
cgGetMatrixSize
cgGetNamedEffect
cgGetNamedEffectAnnotation
cgGetNamedEffectParameter
cgGetNamedParameter
cgGetNamedParameterAnnotation
cgGetNamedPass
cgGetNamedPassAnnotation
cgGetNamedProgramAnnotation
cgGetNamedProgramParameter
cgGetNamedSamplerState
cgGetNamedSamplerStateAssignment
cgGetNamedState
cgGetNamedStateAssignment
cgGetNamedStructParameter
cgGetNamedSubParameter
cgGetNamedTechnique
cgGetNamedTechniqueAnnotation
cgGetNamedUserType
cgGetNextAnnotation
cgGetNextEffect
cgGetNextLeafParameter
cgGetNextParameter
cgGetNextPass
cgGetNextProgram
cgGetNextState
cgGetNextStateAssignment
cgGetNextTechnique
cgGetNumConnectedToParameters
cgGetNumDependentAnnotationParameters
cgGetNumDependentStateAssignmentParameters
cgGetNumParentTypes
cgGetNumProgramDomains
cgGetNumStateEnumerants
cgGetNumSupportedProfiles
cgGetNumUserTypes
cgGetParameterBaseResource
cgGetParameterBaseType
cgGetParameterBufferIndex
cgGetParameterBufferOffset
cgGetParameterClass
cgGetParameterClassEnum
cgGetParameterClassString
cgGetParameterColumns
cgGetParameterContext
cgGetParameterDefaultValuedc
cgGetParameterDefaultValuedr
cgGetParameterDefaultValuefc
cgGetParameterDefaultValuefr
cgGetParameterDefaultValueic
cgGetParameterDefaultValueir
cgGetParameterDirection
cgGetParameterEffect
cgGetParameterIndex
cgGetParameterName
cgGetParameterNamedType
cgGetParameterOrdinalNumber
cgGetParameterProgram
cgGetParameterResource
cgGetParameterResourceIndex
cgGetParameterResourceName
cgGetParameterResourceSize
cgGetParameterResourceType
cgGetParameterRows
cgGetParameterSemantic
cgGetParameterSettingMode
cgGetParameterType
cgGetParameterValuedc
cgGetParameterValuedr
cgGetParameterValuefc
cgGetParameterValuefr
cgGetParameterValueic
cgGetParameterValueir
cgGetParameterValues
cgGetParameterVariability
cgGetParentType
cgGetPassName
cgGetPassProgram
cgGetPassTechnique
cgGetProfile
cgGetProfileDomain
cgGetProfileProperty
cgGetProfileString
cgGetProgramBuffer
cgGetProgramBufferMaxIndex
cgGetProgramBufferMaxSize
cgGetProgramContext
cgGetProgramDomain
cgGetProgramDomainProfile
cgGetProgramDomainProgram
cgGetProgramInput
cgGetProgramOptions
cgGetProgramOutput
cgGetProgramProfile
cgGetProgramStateAssignmentValue
cgGetProgramString
cgGetResource
cgGetResourceString
cgGetSamplerStateAssignmentParameter
cgGetSamplerStateAssignmentState
cgGetSamplerStateAssignmentValue
cgGetSemanticCasePolicy
cgGetStateAssignmentIndex
cgGetStateAssignmentPass
cgGetStateAssignmentState
cgGetStateContext
cgGetStateEnumerant
cgGetStateEnumerantName
cgGetStateEnumerantValue
cgGetStateLatestProfile
cgGetStateName
cgGetStateResetCallback
cgGetStateSetCallback
cgGetStateType
cgGetStateValidateCallback
cgGetString
cgGetStringAnnotationValue
cgGetStringAnnotationValues
cgGetStringParameterValue
cgGetStringStateAssignmentValue
cgGetSupportedProfile
cgGetTechniqueEffect
cgGetTechniqueName
cgGetTextureStateAssignmentValue
cgGetType
cgGetTypeBase
cgGetTypeClass
cgGetTypeSizes
cgGetTypeString
cgGetUserType
cgInternal
cgIsAnnotation
cgIsContext
cgIsEffect
cgIsInterfaceType
cgIsParameter
cgIsParameterGlobal
cgIsParameterReferenced
cgIsParameterUsed
cgIsParentType
cgIsPass
cgIsProfileSupported
cgIsProgram
cgIsProgramCompiled
cgIsState
cgIsStateAssignment
cgIsTechnique
cgIsTechniqueValidated
cgMapBuffer
cgResetPassState
cgSetArraySize
cgSetAutoCompile
cgSetBoolAnnotation
cgSetBoolArrayStateAssignment
cgSetBoolStateAssignment
cgSetBufferData
cgSetBufferSubData
cgSetCompilerIncludeCallback
cgSetCompilerIncludeFile
cgSetCompilerIncludeString
cgSetEffectName
cgSetErrorCallback
cgSetErrorHandler
cgSetFloatAnnotation
cgSetFloatArrayStateAssignment
cgSetFloatStateAssignment
cgSetIntAnnotation
cgSetIntArrayStateAssignment
cgSetIntStateAssignment
cgSetLastListing
cgSetLockingPolicy
cgSetMatrixParameterdc
cgSetMatrixParameterdr
cgSetMatrixParameterfc
cgSetMatrixParameterfr
cgSetMatrixParameteric
cgSetMatrixParameterir
cgSetMultiDimArraySize
cgSetParameter1d
cgSetParameter1dv
cgSetParameter1f
cgSetParameter1fv
cgSetParameter1i
cgSetParameter1iv
cgSetParameter2d
cgSetParameter2dv
cgSetParameter2f
cgSetParameter2fv
cgSetParameter2i
cgSetParameter2iv
cgSetParameter3d
cgSetParameter3dv
cgSetParameter3f
cgSetParameter3fv
cgSetParameter3i
cgSetParameter3iv
cgSetParameter4d
cgSetParameter4dv
cgSetParameter4f
cgSetParameter4fv
cgSetParameter4i
cgSetParameter4iv
cgSetParameterSemantic
cgSetParameterSettingMode
cgSetParameterValuedc
cgSetParameterValuedr
cgSetParameterValuefc
cgSetParameterValuefr
cgSetParameterValueic
cgSetParameterValueir
cgSetParameterVariability
cgSetPassProgramParameters
cgSetPassState
cgSetProgramBuffer
cgSetProgramProfile
cgSetProgramStateAssignment
cgSetSamplerState
cgSetSamplerStateAssignment
cgSetSemanticCasePolicy
cgSetStateCallbacks
cgSetStateLatestProfile
cgSetStringAnnotation
cgSetStringParameterValue
cgSetStringStateAssignment
cgSetTextureStateAssignment
cgUnmapBuffer
cgUpdatePassParameters
cgUpdateProgramParameters
cgValidateTechnique

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 684KB - Virtual size: 680KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.5MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 448KB - Virtual size: 446KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

054a644e9a9eefc751d35513de8dde41

Headers

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 684KB - Virtual size: 680KB

.data Size: 2.5MB - Virtual size: 2.6MB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 448KB - Virtual size: 446KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 684KB - Virtual size: 680KB

.data
Size: 2.5MB - Virtual size: 2.6MB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 448KB - Virtual size: 446KB

.rmnet
Size: 60KB - Virtual size: 60KB