d:\Projects\Payday2\trunk\packages\payday2_pc\payday2_win32_release.pdb
Static task
static1
1 signatures
General
-
Target
payday2_win32_release.exe
-
Size
6.7MB
-
MD5
53ca1f74ba607180309799f1c762b574
-
SHA1
df08b66b640a1954b80416d7876796de500a0d2e
-
SHA256
1ee163f3009a83076cc7db8e617df329f5a1c3bafd53e89feeeb87abff303396
-
SHA512
44fa8d9f88da4e5817bb5ba334e4b6840b33b5144a7f511b9a3386a902b16b28eeb296e733a8779bc6ae8bdd3040c9ee31e14cedab5c2e2832c886d49d020174
-
SSDEEP
98304:vtRylk062MFqVpynMgZO0tlBV6jGcoMoinmV6Wg1iUUTd4d9C1H6:3ylk062MAVpynM6tlBMjGisL69CN
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource payday2_win32_release.exe
Files
-
payday2_win32_release.exe.exe windows:5 windows x86 arch:x86
3e017902ca669eaae2075402162b7e8b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
steam_api
SteamAPI_RestartAppIfNecessary
SteamAPI_Init
SteamAPI_Shutdown
SteamAPI_WriteMiniDump
SteamAPI_SetMiniDumpComment
SteamNetworking
SteamRemoteStorage
SteamClient
SteamHTTP
SteamAPI_RunCallbacks
SteamAPI_RegisterCallback
SteamAPI_UnregisterCallback
SteamAPI_UnregisterCallResult
SteamAPI_RegisterCallResult
SteamUserStats
SteamMatchmaking
SteamApps
SteamAPI_IsSteamRunning
SteamFriends
SteamUtils
SteamUser
binkw32
_BinkClose@4
_BinkCopyToBuffer@28
_BinkSetVolume@12
_BinkGoto@12
_BinkSetSoundOnOff@8
_BinkNextFrame@4
_BinkShouldSkip@4
_BinkDoFrame@4
_BinkWait@4
_BinkSetSoundTrack@8
_BinkSetIO@4
_BinkPause@8
_BinkSetMemory@8
_BinkOpen@8
_BinkOpenDirectSound@4
_BinkSetSoundSystem@8
_BinkSetFrameRate@8
_BinkGetTrackID@8
wsock32
send
bind
inet_ntoa
getsockname
sendto
recv
recvfrom
listen
accept
connect
WSACleanup
WSAStartup
gethostname
gethostbyaddr
gethostbyname
__WSAFDIsSet
select
WSASetLastError
ntohl
ntohs
WSAGetLastError
closesocket
socket
htons
htonl
setsockopt
winmm
waveOutWrite
timeBeginPeriod
waveOutUnprepareHeader
waveOutClose
waveOutOpen
timeEndPeriod
timeGetDevCaps
waveOutPrepareHeader
iphlpapi
GetAdaptersInfo
GetIpAddrTable
psapi
GetProcessMemoryInfo
rpcrt4
UuidCreateSequential
d3d9
Direct3DCreate9
d3dx9_40
D3DXGetShaderConstantTable
D3DXCreateBuffer
dinput8
DirectInput8Create
xinput1_3
ord3
ord2
physx3common_x86
PxCreateFoundation
?findOverlapTriangleMesh@PxMeshQuery@physx@@SAIABVPxGeometry@2@ABVPxTransform@2@ABVPxTriangleMeshGeometry@2@1PAIIIAA_N@Z
?getTriangle@PxMeshQuery@physx@@SAXABVPxTriangleMeshGeometry@2@ABVPxTransform@2@IAAVPxTriangle@2@PAI3@Z
??1Thread@shdfnd@physx@@UAE@XZ
?setAffinityMask@Thread@shdfnd@physx@@UAEII@Z
??0Thread@shdfnd@physx@@QAE@XZ
?wait@Sync@shdfnd@physx@@QAE_NI@Z
?allocate@TempAllocator@shdfnd@physx@@QAEPAXIPBDH@Z
?PxDiagonalize@physx@@YA?AVPxVec3@1@ABVPxMat33@1@AAVPxQuat@1@@Z
?deallocate@TempAllocator@shdfnd@physx@@QAEXPAX@Z
?error@Foundation@shdfnd@physx@@QAAXW4Enum@PxErrorCode@3@PBDH1ZZ
?getInstance@Foundation@shdfnd@physx@@SAAAV123@XZ
??0FPUGuard@shdfnd@physx@@QAE@XZ
??1FPUGuard@shdfnd@physx@@QAE@XZ
?getId@Thread@shdfnd@physx@@SAIXZ
?signalQuit@Thread@shdfnd@physx@@QAEXXZ
?waitForQuit@Thread@shdfnd@physx@@QAE_NXZ
??1Sync@shdfnd@physx@@QAE@XZ
?getDefaultStackSize@Thread@shdfnd@physx@@SAIXZ
?start@Thread@shdfnd@physx@@QAEXI@Z
?setName@Thread@shdfnd@physx@@QAEXPBD@Z
?getSize@SListImpl@shdfnd@physx@@SAABIXZ
??0SListImpl@shdfnd@physx@@QAE@XZ
??1SListImpl@shdfnd@physx@@QAE@XZ
?pop@SListImpl@shdfnd@physx@@QAEPAVSListEntry@23@XZ
?push@SListImpl@shdfnd@physx@@QAEXPAVSListEntry@23@@Z
?reset@Sync@shdfnd@physx@@QAEXXZ
?set@Sync@shdfnd@physx@@QAEXXZ
?addToStringTable@Cm@physx@@YAIAAV?$Array@DV?$ReflectionAllocator@D@shdfnd@physx@@@shdfnd@2@PBD@Z
?incRefCount@Foundation@shdfnd@physx@@SAXXZ
?decRefCount@Foundation@shdfnd@physx@@SAXXZ
??0?$PxFlags@W4Enum@PxSerialFlag@physx@@G@physx@@QAE@XZ
??_4?$PxFlags@W4Enum@PxSerialFlag@physx@@G@physx@@QAEAAV01@ABV01@@Z
??S?$PxFlags@W4Enum@PxSerialFlag@physx@@G@physx@@QBE?AV01@XZ
??I?$PxFlags@W4Enum@PxSerialFlag@physx@@G@physx@@QBE?AV01@W4Enum@PxSerialFlag@1@@Z
??B?$PxFlags@W4Enum@PxSerialFlag@physx@@G@physx@@QBE_NXZ
??0?$PxFlags@W4Enum@PxSerialFlag@physx@@G@physx@@QAE@ABV01@@Z
?allocate@Allocator@shdfnd@physx@@QAEPAXIPBDH@Z
?deallocate@Allocator@shdfnd@physx@@QAEXPAX@Z
?getAllocator@shdfnd@physx@@YAAAVPxAllocatorCallback@2@XZ
??0?$PxFlags@W4Enum@PxSerialFlag@physx@@G@physx@@QAE@W4Enum@PxSerialFlag@1@@Z
?quitIsSignalled@Thread@shdfnd@physx@@QAE_NXZ
??0Sync@shdfnd@physx@@QAE@XZ
?quit@Thread@shdfnd@physx@@QAEXXZ
physx3cooking_x86
PxCreateCooking
physx3_x86
PxRegisterArticulations
PxCreateBasePhysics
PxRegisterHeightFields
PxGetSDKMetaData
kernel32
HeapSize
HeapCreate
TlsSetValue
TlsGetValue
GetStringTypeW
GetCPInfo
LCMapStringW
LCMapStringA
GetStartupInfoA
GetFileType
SetStdHandle
MoveFileA
DeleteFileA
CompareStringA
GetTimeZoneInformation
GetModuleHandleW
GetDateFormatA
GetTimeFormatA
GetACP
UnhandledExceptionFilter
CompareStringW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
SetHandleCount
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
GetOEMCP
GetSystemTimeAsFileTime
IsValidCodePage
ExitProcess
WaitForMultipleObjectsEx
CreateThread
RaiseException
InterlockedDecrement
MultiByteToWideChar
SetEnvironmentVariableA
HeapReAlloc
InitializeCriticalSection
WideCharToMultiByte
CreateEventW
OutputDebugStringA
AttachConsole
GetStdHandle
GetCommandLineW
GetTempPathW
GetTempFileNameW
CreateProcessW
TerminateProcess
lstrcpyA
GlobalMemoryStatusEx
VirtualQuery
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
Sleep
CreateEventA
CloseHandle
ResetEvent
SetEvent
WaitForSingleObject
InterlockedExchange
InterlockedCompareExchange
InterlockedExchangeAdd
GetCurrentThread
GetProcAddress
GetModuleHandleA
GetModuleFileNameW
LoadLibraryA
DebugBreak
GlobalLock
GetEnvironmentVariableA
HeapFree
LocalFree
HeapAlloc
GetProcessHeap
GetLastError
GetCurrentProcess
GlobalUnlock
GlobalAlloc
SleepEx
GetVolumeInformationA
GlobalMemoryStatus
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
InterlockedIncrement
InitializeSListHead
QueryPerformanceCounter
FreeLibrary
SetLastError
ReadProcessMemory
TlsAlloc
TlsFree
DisconnectNamedPipe
ConnectNamedPipe
GetVersionExA
CreateMutexA
GetFileAttributesA
GetModuleFileNameA
GetCurrentProcessId
CreateFileA
SetThreadAffinityMask
OpenThread
WaitForMultipleObjects
GetFileSizeEx
DeviceIoControl
FormatMessageA
GetFileAttributesW
CreateDirectoryW
DeleteFileW
RemoveDirectoryW
ExitThread
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsW
LoadLibraryW
ReadFile
DuplicateHandle
CreatePipe
FindClose
FindFirstFileW
CreateFileW
WriteFile
SetFilePointerEx
ResumeThread
GetThreadContext
SuspendThread
FindNextFileW
GetCommandLineA
GetModuleHandleExA
GetNumaNodeProcessorMask
GetSystemInfo
GetProcessAffinityMask
IsDebuggerPresent
SetUnhandledExceptionFilter
SetThreadPriority
QueryPerformanceFrequency
GetSystemPowerStatus
CreateNamedPipeA
GetOverlappedResult
GetTickCount
VirtualFree
VirtualAlloc
user32
SendMessageA
CreateWindowExA
RegisterClassExA
GetClassInfoExA
InvalidateRect
UnregisterClassA
PeekMessageA
GetSystemMetrics
LoadImageW
GetForegroundWindow
CallWindowProcW
SetWindowLongW
GetWindowLongW
UnregisterDeviceNotification
GetWindowLongA
DefWindowProcW
CallNextHookEx
PostMessageW
TrackMouseEvent
SetWindowPos
UpdateWindow
ShowWindow
SetFocus
SetActiveWindow
ReleaseDC
SetWindowTextA
SetForegroundWindow
GetAncestor
SystemParametersInfoA
EnumDisplaySettingsA
GetClientRect
GetDesktopWindow
DefWindowProcA
CloseClipboard
GetClipboardData
OpenClipboard
SetClipboardData
MessageBoxA
AttachThreadInput
EnableWindow
LoadCursorA
SetCursor
DispatchMessageA
GetMessageA
AdjustWindowRectEx
GetDC
GetWindowRect
ShowCursor
SetWindowLongA
DestroyWindow
UnhookWindowsHookEx
PeekMessageW
TranslateMessage
EndPaint
FillRect
BeginPaint
DispatchMessageW
CreateWindowExW
SetWindowsHookExA
LoadIconA
RegisterClassExW
GetCursorInfo
gdi32
GetDeviceCaps
DeleteObject
CreateFontIndirectA
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
GetObjectA
GetStockObject
advapi32
RegCreateKeyExA
ConvertSidToStringSidA
GetTokenInformation
OpenProcessToken
ConvertStringSecurityDescriptorToSecurityDescriptorA
GetUserNameA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegOpenKeyA
shell32
SHCreateDirectoryExW
SHGetFolderPathW
CommandLineToArgvW
ShellExecuteW
ole32
CoInitialize
CoInitializeEx
CoUninitialize
CoSetProxyBlanket
CoCreateInstance
oleaut32
VariantInit
SysFreeString
SysAllocString
VariantClear
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueA
shlwapi
PathStripPathW
PathAppendW
PathFileExistsW
ntdll
RtlUnwind
Sections
.text Size: 4.9MB - Virtual size: 4.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 108KB - Virtual size: 216KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 77KB - Virtual size: 77KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 364KB - Virtual size: 364KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ