78f46bb954a9de0452d05cab783d73990de89d53208fffcd2426ea91fa2e9b6a

Sharing

Copy URL Twitter E-mail

General

Target

78f46bb954a9de0452d05cab783d73990de89d53208fffcd2426ea91fa2e9b6a
Size

1.5MB
MD5

7089e98de9fae4b2ac8e3f1fba1cc1d7
SHA1

853a04f5d836b24bc08162f7bada9a3f9f36f011
SHA256

78f46bb954a9de0452d05cab783d73990de89d53208fffcd2426ea91fa2e9b6a
SHA512

2d784dae5a2eff95d8657080c59af23f649fb9e9086e2cab84ad3265f4092d8b22489e5c11409285010da4835062e9e28087cc423418222eda24a5836eadc08f
SSDEEP

24576:XN2OPWHOdPIwfE/mBKF4fACh4qKv53Mz2EH9r0xuGASnzyDYopTMy8N82Tlw/cD:9PPfPbGmBvu5qrMb5Te

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78f46bb954a9de0452d05cab783d73990de89d53208fffcd2426ea91fa2e9b6a

Files

78f46bb954a9de0452d05cab783d73990de89d53208fffcd2426ea91fa2e9b6a
.dll windows:5 windows x86 arch:x86

d0c68c35d131d2b24daf52cd724be8f6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\buildslave\rel_singleplayer_win32\build\src\game\gamepadui\Release_lostcoast\gamepadui.pdb

Imports

user32

LoadImageA

gdi32

GetObjectA
CreateCompatibleDC
DeleteDC
DeleteObject
GetDIBits

steam_api

SteamAPI_GetHSteamUser
SteamInternal_CreateInterface
SteamInternal_FindOrCreateUserInterface
SteamAPI_SetTryCatchCallbacks
SteamAPI_InitSafe
SteamInternal_ContextInit

tier0

?ConColorMsg@@YAXABVColor@@PBDZZ
CommandLine_Tier0
Plat_IsInDebugSession
Warning
Plat_FloatTime
WriteMiniDump
Msg
MemAllocScratch
g_pMemAlloc
Error
MemFreeScratch
DevMsg
?DevMsg@@YAXPBDZZ
?DevWarning@@YAXPBDZZ
CreateSimpleThread
ReleaseThreadHandle
GetThreadedLoadLibraryFunc
ThreadWaitForObjects
??0CThreadSpinRWLock@@QAE@XZ
?LockForRead@CThreadSpinRWLock@@QAEXXZ
?UnlockRead@CThreadSpinRWLock@@QAEXXZ
?LockForWrite@CThreadSpinRWLock@@QAEXXZ
?UnlockWrite@CThreadSpinRWLock@@QAEXXZ

vstdlib

RandomFloat
KeyValuesSystem

kernel32

GetModuleFileNameW
HeapFree
SetEndOfFile
CreateFileW
OutputDebugStringW
WriteConsoleW
SetStdHandle
SetFilePointerEx
LCMapStringW
CompareStringW
GetStringTypeW
GetCurrentDirectoryW
FlushFileBuffers
LoadLibraryExW
VirtualQuery
HeapAlloc
GetProcessHeap
GetCurrentProcess
TerminateProcess
GetModuleFileNameA
GetSystemInfo
CloseHandle
GetExitCodeThread
WaitForMultipleObjects
CreateThread
IsProcessorFeaturePresent
ExitProcess
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
GetCurrentThreadId
FreeLibrary
GetProcAddress
LoadLibraryExA
GetModuleHandleA
RaiseException
IsDebuggerPresent
RtlUnwind
GetCommandLineA
GetLastError
GetModuleHandleExW
AreFileApisANSI
EnterCriticalSection
LeaveCriticalSection
GetDriveTypeW
GetFullPathNameA
SetEnvironmentVariableA
GetSystemTimeAsFileTime
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
SetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
GetStdHandle
GetFileType
DeleteCriticalSection
ReadFile
GetConsoleMode
ReadConsoleW
WriteFile
GetConsoleCP
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW

Exports

Exports

CreateInterface
cvar

Sections

.text
Size: 997KB - Virtual size: 997KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 456KB - Virtual size: 455KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0c68c35d131d2b24daf52cd724be8f6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

user32

gdi32

steam_api

tier0

vstdlib

kernel32

Exports

Exports

Sections

.text Size: 997KB - Virtual size: 997KB

.rdata Size: 456KB - Virtual size: 455KB

.data Size: 16KB - Virtual size: 132KB

.reloc Size: 84KB - Virtual size: 84KB

.text
Size: 997KB - Virtual size: 997KB

.rdata
Size: 456KB - Virtual size: 455KB

.data
Size: 16KB - Virtual size: 132KB

.reloc
Size: 84KB - Virtual size: 84KB