C:\p4builds\Products\GoToMeeting\release-724\output\G2M_Dll.pdb
Static task
static1
1 signatures
General
-
Target
g2m.dll
-
Size
29.7MB
-
MD5
451d7473ce30a5b7d5c7fb74cd6c524b
-
SHA1
73c5b0687040fb362133821a9f2b011a7ca54650
-
SHA256
7bc8c5e769502674fdf1c234f678285a462b035c203d8266e4d580b341a9286b
-
SHA512
5982c9ef7ed12420fdbc9e12744580d216509a45bdb994b4d54829d752b71100b46dd6f2a4e544ba0f3392dd860ffb889b943c73732a6d1d5f2b48d7c6d8837b
-
SSDEEP
393216:7ezz3nEDJ63vIMxrsjnh7CHfqkALvIzhJRYiE/XWKNnBcR4:KzSCvRGwCXUhJRYiE+0nBcR4
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource g2m.dll
Files
-
g2m.dll.dll regsvr32 windows:5 windows x86 arch:x86
68d2b994f2e04c39bc7b7badfe0d5509
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
rpcrt4
NdrCStdStubBuffer_Release
UuidToStringW
UuidCreate
RpcStringFreeW
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_CountRefs
NdrDllGetClassObject
NdrOleAllocate
NdrOleFree
CStdStubBuffer_QueryInterface
CStdStubBuffer_AddRef
IUnknown_QueryInterface_Proxy
IUnknown_AddRef_Proxy
CStdStubBuffer_Connect
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
IUnknown_Release_Proxy
CStdStubBuffer_IsIIDSupported
netapi32
NetApiBufferFree
Netbios
NetUserGetInfo
DsGetDcNameW
psapi
GetModuleBaseNameW
EnumProcessModules
EnumProcesses
GetModuleInformation
GetModuleFileNameExW
wsock32
send
recv
WSAGetLastError
shutdown
recvfrom
ntohl
inet_addr
sendto
setsockopt
select
ntohs
htonl
getsockopt
getsockname
getpeername
connect
WSACleanup
__WSAFDIsSet
gethostname
gethostbyname
accept
bind
closesocket
inet_ntoa
htons
ioctlsocket
listen
socket
WSAStartup
WSASetLastError
shlwapi
PathRemoveExtensionW
PathStripPathW
StrChrW
StrFormatByteSizeW
version
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
powrprof
CallNtPowerInformation
secur32
InitSecurityInterfaceA
GetUserNameExW
wininet
HttpQueryInfoW
InternetErrorDlg
HttpEndRequestW
HttpAddRequestHeadersW
InternetSetStatusCallbackW
InternetSetOptionW
InternetConnectW
InternetReadFileExA
HttpSendRequestExW
InternetQueryOptionW
InternetCrackUrlW
InternetCanonicalizeUrlW
InternetCloseHandle
InternetOpenW
InternetCreateUrlW
HttpOpenRequestW
kernel32
FileTimeToSystemTime
GlobalMemoryStatusEx
LocalAlloc
GetSystemInfo
lstrcmpiW
lstrlenA
GetLocaleInfoW
OpenProcess
GetCurrentThread
GetShortPathNameW
GetModuleHandleExW
WriteFile
ReadFile
FlushFileBuffers
SetEndOfFile
SetFilePointer
FindClose
SetFileTime
GetTempFileNameW
GetDiskFreeSpaceExW
GetFileAttributesW
DeleteFileW
FindFirstFileW
CopyFileW
MoveFileW
GetLocalTime
GetTempPathW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
RemoveDirectoryW
ReleaseMutex
CreateMutexW
SetThreadPriority
GetThreadPriority
TerminateThread
ResumeThread
InitializeCriticalSection
TerminateProcess
GetExitCodeProcess
CreateProcessW
CompareFileTime
FindNextFileW
WaitForMultipleObjects
GetProcessTimes
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetTickCount
QueryPerformanceCounter
QueryPerformanceFrequency
GetTimeFormatW
GetDateFormatW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
ResetEvent
CreateEventW
OpenEventW
QueryDosDeviceW
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
LoadResource
SizeofResource
FindResourceW
HeapReAlloc
HeapSize
GetProcessHeap
OpenMutexW
MulDiv
GetTempPathA
CreateDirectoryA
GetWindowsDirectoryW
GetEnvironmentVariableW
SetEnvironmentVariableW
SystemTimeToFileTime
GlobalAlloc
GlobalLock
GlobalUnlock
FlushInstructionCache
lstrcmpW
CreateWaitableTimerW
SetWaitableTimer
SetProcessShutdownParameters
GetCommandLineW
GetVersionExA
GetFileTime
LockResource
GlobalFree
Thread32First
Thread32Next
ExitProcess
InterlockedExchange
InterlockedExchangeAdd
GetProcessId
DuplicateHandle
CreateThread
OpenFileMappingW
lstrlenW
LoadLibraryExA
TlsFree
HeapFree
HeapAlloc
HeapDestroy
HeapCreate
GetSystemWindowsDirectoryW
LoadLibraryW
SetEvent
CreateEventA
CreateFileW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
CloseHandle
GetFileSize
WaitForSingleObject
GetCurrentThreadId
GetCurrentProcessId
WideCharToMultiByte
MultiByteToWideChar
GetSystemDirectoryW
LoadLibraryExW
GetVersionExW
IsBadReadPtr
TlsSetValue
TlsGetValue
TlsAlloc
Sleep
SetUnhandledExceptionFilter
GetCurrentProcess
FreeLibrary
OutputDebugStringW
FormatMessageW
LocalFree
SetThreadLocale
GetThreadLocale
GetModuleHandleW
GetModuleFileNameW
LeaveCriticalSection
EnterCriticalSection
GetProcAddress
InterlockedDecrement
InterlockedIncrement
EncodePointer
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
DisableThreadLibraryCalls
DecodePointer
AreFileApisANSI
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LCMapStringW
SetLastError
GetSystemTime
CompareStringW
FreeLibraryAndExitThread
WaitForSingleObjectEx
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
CreateSemaphoreW
GetStartupInfoW
UnhandledExceptionFilter
GetCPInfo
RegisterWaitForSingleObject
ReadConsoleInputA
SetConsoleMode
LocalFileTimeToFileTime
CreateTimerQueue
SignalObjectAndWait
SwitchToThread
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
RtlUnwind
GetACP
ExitThread
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetCommandLineA
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
IsDebuggerPresent
FormatMessageA
GetStringTypeW
GetFileType
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetOEMCP
GetConsoleCP
GetConsoleMode
SetConsoleCtrlHandler
SetFilePointerEx
SetStdHandle
WriteConsoleW
SetEnvironmentVariableA
ReadConsoleW
ReleaseSemaphore
GetModuleHandleA
GlobalMemoryStatus
LoadLibraryA
FlushConsoleInputBuffer
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
UnregisterWait
VirtualProtect
FindFirstFileExW
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
GetSystemDefaultLCID
EnumResourceLanguagesW
GetFileInformationByHandle
PeekNamedPipe
GetFullPathNameW
VerifyVersionInfoW
VerSetConditionMask
InterlockedCompareExchange
OpenEventA
GetFileSizeEx
GetExitCodeThread
MoveFileA
FindNextFileA
FindFirstFileA
GetFileAttributesExA
SetThreadAffinityMask
GetProcessAffinityMask
CreateWaitableTimerA
SetPriorityClass
FreeConsole
AllocConsole
OutputDebugStringA
CreateMutexA
GetLocaleInfoA
GetNativeSystemInfo
CreateSemaphoreA
GetOverlappedResult
ConnectNamedPipe
DisconnectNamedPipe
SetNamedPipeHandleState
FoldStringW
GetVolumeInformationW
WaitNamedPipeW
CreateNamedPipeW
SetThreadExecutionState
ExpandEnvironmentStringsW
FreeResource
GetThreadTimes
OpenThread
GetUserDefaultUILanguage
GetStdHandle
gdi32
SetPixel
SetROP2
GetClipRgn
IntersectClipRect
CreateBitmap
GetObjectA
ExtTextOutW
GetRgnBox
GetRegionData
EqualRgn
CreateRectRgnIndirect
DPtoLP
OffsetRgn
GetSystemPaletteEntries
CreatePalette
Polyline
GetPaletteEntries
SetDIBColorTable
GetDIBColorTable
CreateDIBSection
SaveDC
RestoreDC
GetDCOrgEx
CreateDCW
FillRgn
PtInRegion
CreatePen
Polygon
SetPolyFillMode
PaintRgn
FrameRgn
SetDCPenColor
SetDCBrushColor
Rectangle
CreateEllipticRgn
GetTextMetricsW
SetBkColor
CreatePolygonRgn
CreateRoundRectRgn
SetStretchBltMode
StretchBlt
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
MoveToEx
SetPixelV
SetMapMode
SelectClipRgn
LineTo
GetPixel
GetClipBox
SetRectRgn
ExcludeClipRect
CreateRectRgn
CombineRgn
GetTextExtentPoint32W
SetDIBits
GetDIBits
CreateDIBitmap
GetBitmapBits
TextOutW
SetTextColor
GetTextColor
GetBkMode
CreateFontW
CreateFontIndirectW
SetBrushOrgEx
SetBkMode
CreatePatternBrush
GetObjectW
SelectObject
GetStockObject
DeleteObject
DeleteDC
CreateSolidBrush
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetDeviceCaps
comdlg32
GetSaveFileNameW
ChooseColorW
GetOpenFileNameW
CommDlgExtendedError
ole32
OleLockRunning
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateFreeThreadedMarshaler
CoGetCurrentProcess
StringFromGUID2
CoRegisterClassObject
CoInitialize
CoRegisterPSClsid
RegisterDragDrop
RevokeDragDrop
ReleaseStgMedium
StringFromCLSID
PropVariantClear
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
CoRevokeClassObject
CoGetCallContext
CoSetProxyBlanket
CoDisconnectObject
CoInitializeSecurity
CoGetObject
CoCreateGuid
StringFromIID
IIDFromString
CoFreeUnusedLibraries
CoCreateInstance
CoInitializeEx
CoUninitialize
OleUninitialize
OleInitialize
OleRun
oleaut32
SafeArrayUnaccessData
OleLoadPicturePath
VarBstrCat
SafeArrayAccessData
SafeArrayCreate
OleLoadPicture
OleCreateFontIndirect
DispCallFunc
LoadRegTypeLi
VariantClear
VariantInit
SysStringByteLen
SysAllocStringLen
VarUI4FromStr
LPSAFEARRAY_UserFree
LPSAFEARRAY_UserMarshal
LPSAFEARRAY_UserSize
BSTR_UserFree
BSTR_UserUnmarshal
BSTR_UserMarshal
BSTR_UserSize
UnRegisterTypeLi
RegisterTypeLi
LoadTypeLi
SysStringLen
SysAllocString
SysFreeString
VariantChangeType
SafeArrayDestroy
SafeArrayPutElement
SafeArrayGetElement
SysAllocStringByteLen
SafeArrayGetUBound
OleCreatePropertyFrame
VariantCopy
VarBstrCmp
SystemTimeToVariantTime
SafeArrayGetLBound
LPSAFEARRAY_UserUnmarshal
wtsapi32
WTSFreeMemory
WTSQuerySessionInformationW
comctl32
ord412
InitCommonControlsEx
ord410
ord413
userenv
DestroyEnvironmentBlock
CreateEnvironmentBlock
winmm
mixerClose
mixerGetNumDevs
timeSetEvent
timeKillEvent
timeGetTime
mmioAscend
mmioDescend
mmioRead
mmioClose
mmioOpenA
mmioOpenW
waveOutPause
waveInGetPosition
waveInReset
waveInStop
waveInStart
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInGetErrorTextW
waveOutGetPosition
waveOutReset
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutGetErrorTextW
waveOutSetVolume
waveOutGetVolume
timeBeginPeriod
mixerSetControlDetails
timeEndPeriod
mixerGetControlDetailsW
mixerGetLineControlsW
mixerGetLineInfoW
waveInGetNumDevs
mixerGetDevCapsW
mixerOpen
waveOutMessage
waveInMessage
waveOutGetDevCapsW
waveInGetDevCapsW
waveOutGetNumDevs
waveInOpen
waveOutOpen
waveInClose
waveOutClose
mixerGetID
waveInGetID
waveOutGetID
avicap32
capCreateCaptureWindowA
capGetDriverDescriptionA
d3d9
Direct3DCreate9
msacm32
acmStreamPrepareHeader
acmStreamClose
acmStreamUnprepareHeader
acmStreamOpen
acmStreamConvert
setupapi
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsW
iphlpapi
GetAdaptersInfo
crypt32
CertCreateCertificateContext
CertAddEncodedCertificateToStore
CertGetNameStringA
CertGetCertificateChain
CertFreeCertificateChain
CertVerifyCertificateChainPolicy
CertCloseStore
CertOpenStore
CertGetNameStringW
ws2_32
WSAAddressToStringA
getaddrinfo
freeaddrinfo
getnameinfo
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
WSAResetEvent
WSAWaitForMultipleEvents
WSASetEvent
WSASend
WSAIoctl
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
g2mcomm_winmain
g2minstaller_winmain
g2minsthigh_winmain
g2mlauncher_winmain
g2mstart_winmain
g2mui_winmain
g2muninstall_winmain
g2mupdate_winmain
g2mupload_winmain
g2mvideoconference_winmain
Sections
.text Size: 22.0MB - Virtual size: 22.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.orpc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IPPCODE Size: 903KB - Virtual size: 904KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3.6MB - Virtual size: 3.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 430KB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IPPDATA Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 839KB - Virtual size: 839KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ