D:\tfsagent\_work\12\s\src\Release9\DxfParser.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
19e3024e472fc55880bc6eb9a8441d49e9f03366a94f82328a227e87e0666a19.dll
Resource
win7-20240611-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
19e3024e472fc55880bc6eb9a8441d49e9f03366a94f82328a227e87e0666a19.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
19e3024e472fc55880bc6eb9a8441d49e9f03366a94f82328a227e87e0666a19
-
Size
59KB
-
MD5
bc478e81083e5465659d3bba489d4feb
-
SHA1
d7f2c9d26c33db04e175efe5a6c16edc33668542
-
SHA256
19e3024e472fc55880bc6eb9a8441d49e9f03366a94f82328a227e87e0666a19
-
SHA512
75836fc0cf2364e60fae1063680982f5e794a70cf4449cc6cbe57b1719643b93352d8a790b5fe2698b60debd3ef0324fe78733ff2ce5c2323bc1cd4fc11635f4
-
SSDEEP
768:rrNJ6wENgihlgvH4Xqm3AfH4xcwgQIJgvph7jhcDQh05cweOZd2dbG7nXD:/NhENguSvJmKc/QIjhcDQhueOZAG7X
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 19e3024e472fc55880bc6eb9a8441d49e9f03366a94f82328a227e87e0666a19
Files
-
19e3024e472fc55880bc6eb9a8441d49e9f03366a94f82328a227e87e0666a19.dll windows:5 windows x86 arch:x86
c36b7282b28e65908e2aeda3672d7634
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
kernel32
MapViewOfFile
CloseHandle
CreateFileMappingA
CreateFileA
UnmapViewOfFile
EncodePointer
DecodePointer
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
dxflib
?addXDataString@DL_CreationAdapter@@UAEXHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1DL_Attributes@@QAE@XZ
?getAttributes@DL_CreationInterface@@QAE?AVDL_Attributes@@XZ
?getLayer@DL_Attributes@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
??0DL_CreationAdapter@@QAE@XZ
??1DL_CreationAdapter@@UAE@XZ
??1DL_Dxf@@QAE@XZ
??0DL_Dxf@@QAE@XZ
?readDxfGroups@DL_Dxf@@QAE_NPAD0_NPAVDL_CreationInterface@@@Z
?processCodeValuePair@DL_CreationAdapter@@UAEXIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?endSection@DL_CreationAdapter@@UAEXXZ
?addLinetype@DL_CreationAdapter@@UAEXABUDL_LinetypeData@@@Z
?addLinetypeDash@DL_CreationAdapter@@UAEXN@Z
?addBlock@DL_CreationAdapter@@UAEXABUDL_BlockData@@@Z
?endBlock@DL_CreationAdapter@@UAEXXZ
?addTextStyle@DL_CreationAdapter@@UAEXABUDL_StyleData@@@Z
?addXLine@DL_CreationAdapter@@UAEXABUDL_XLineData@@@Z
?addRay@DL_CreationAdapter@@UAEXABUDL_RayData@@@Z
?addFitPoint@DL_CreationAdapter@@UAEXABUDL_FitPointData@@@Z
?addInsert@DL_CreationAdapter@@UAEXABUDL_InsertData@@@Z
?addTrace@DL_CreationAdapter@@UAEXABUDL_TraceData@@@Z
?add3dFace@DL_CreationAdapter@@UAEXABUDL_TraceData@@@Z
?addSolid@DL_CreationAdapter@@UAEXABUDL_TraceData@@@Z
?addMText@DL_CreationAdapter@@UAEXABUDL_MTextData@@@Z
?addMTextChunk@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?addText@DL_CreationAdapter@@UAEXABUDL_TextData@@@Z
?addArcAlignedText@DL_CreationAdapter@@UAEXABUDL_ArcAlignedTextData@@@Z
?addAttribute@DL_CreationAdapter@@UAEXABUDL_AttributeData@@@Z
?addDimAlign@DL_CreationAdapter@@UAEXABUDL_DimensionData@@ABUDL_DimAlignedData@@@Z
?addDimLinear@DL_CreationAdapter@@UAEXABUDL_DimensionData@@ABUDL_DimLinearData@@@Z
?addDimRadial@DL_CreationAdapter@@UAEXABUDL_DimensionData@@ABUDL_DimRadialData@@@Z
?addDimDiametric@DL_CreationAdapter@@UAEXABUDL_DimensionData@@ABUDL_DimDiametricData@@@Z
?addDimAngular@DL_CreationAdapter@@UAEXABUDL_DimensionData@@ABUDL_DimAngularData@@@Z
?addDimAngular3P@DL_CreationAdapter@@UAEXABUDL_DimensionData@@ABUDL_DimAngular3PData@@@Z
?addDimOrdinate@DL_CreationAdapter@@UAEXABUDL_DimensionData@@ABUDL_DimOrdinateData@@@Z
?addLeader@DL_CreationAdapter@@UAEXABUDL_LeaderData@@@Z
?addLeaderVertex@DL_CreationAdapter@@UAEXABUDL_LeaderVertexData@@@Z
?addHatch@DL_CreationAdapter@@UAEXABUDL_HatchData@@@Z
?addImage@DL_CreationAdapter@@UAEXABUDL_ImageData@@@Z
?linkImage@DL_CreationAdapter@@UAEXABUDL_ImageDefData@@@Z
?addHatchLoop@DL_CreationAdapter@@UAEXABUDL_HatchLoopData@@@Z
?addHatchEdge@DL_CreationAdapter@@UAEXABUDL_HatchEdgeData@@@Z
?addXRecord@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?addXRecordString@DL_CreationAdapter@@UAEXHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?addXRecordReal@DL_CreationAdapter@@UAEXHN@Z
?addXRecordInt@DL_CreationAdapter@@UAEXHH@Z
?addXRecordBool@DL_CreationAdapter@@UAEXH_N@Z
?addXDataApp@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?endSequence@DL_CreationAdapter@@UAEXXZ
?addXDataReal@DL_CreationAdapter@@UAEXHN@Z
?addXDataInt@DL_CreationAdapter@@UAEXHH@Z
?addDictionary@DL_CreationAdapter@@UAEXABUDL_DictionaryData@@@Z
?addDictionaryEntry@DL_CreationAdapter@@UAEXABUDL_DictionaryEntryData@@@Z
?endEntity@DL_CreationAdapter@@UAEXXZ
?addComment@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?setVariableVector@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@NNNH@Z
?setVariableString@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0H@Z
?setVariableInt@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HH@Z
?setVariableDouble@DL_CreationAdapter@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@NH@Z
engine
?IsPipeAborted@CWorker@@UAE_NXZ
?SwitchToMainFiber@CWorker@@UAEXXZ
?GetStationIndex@CWorker@@UAEHXZ
?PostMsg@CWorker@@UAEXI@Z
?SetPhoenix@CWorker@@UAE_NPBDAAUValueItemInfo@CGAccess@@_N@Z
?CopyDynamicData@Part@@QAEXPAXPBXI@Z
??0CLuaAccess@@QAE@PAUlua_State@@@Z
??1CLuaAccess@@UAE@XZ
?Enter@CLuaAccess@@QAE_NPBD@Z
?Read@CLuaAccess@@QAE_NAANPBD1NN@Z
?Read@CLuaAccess@@QAE_NAA_NPBD@Z
?Leave@CLuaAccess@@QAEXXZ
?Read@CLuaAccess@@QAE_NAAHPBD1HH@Z
?Log@CGAccess@@2P6AXPBD00@ZA
?Write@CLuaAccess@@QAE_NNPBD@Z
?Write@CLuaAccess@@QAE_N_NPBD@Z
??2Part@@SAPAXIPBDI@Z
?TryGetPhoenix@CWorker@@UAE_NPBDAAUValueItemInfo@CGAccess@@_N@Z
?LS@CGAccess@@SAPADPBD0@Z
RtTrace
?Read@CLuaAccess@@QAE_NAANHPBDNN@Z
??2Part@@SAPAXII@Z
??3Part@@SAXPAX@Z
?Read@CWorker@@UAEPAUNcCode@@XZ
?Wait@CWorker@@UAEXPAX@Z
?Msg@CWorker@@UAEXPBD0@Z
?Pause@CWorker@@UAEXN@Z
?SetReadFifo@CWorker@@UAEXPAV?$CRingBuffer@PAUNcCode@@$03@@H@Z
?SetWriteFifo@CWorker@@UAEXPAV?$CRingBuffer@PAUNcCode@@$03@@H@Z
?GetPhoenix@CWorker@@UAE_NPBDAAUValueItemInfo@CGAccess@@_N@Z
script
?FeatureCoorSystemBasedOnProjectionAngle@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@0@Z
?FeatureCoorSystemByToolAxisDirection@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@N@Z
?FeatureCoorSystemOn@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@00@Z
?SetFeatureCoorSystem@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@00@Z
?FeatureCoorSystemOff@CScriptWorker@@UAEXXZ
?ToolAxisDirectionCtrl@CScriptWorker@@UAEXNNN@Z
?PostLuaString@CScriptWorker@@UAEXPBDNN@Z
?WaitPort@CScriptWorker@@UAEHPBDNN_N@Z
?SetSynPort@CScriptWorker@@UAEXPBDNHNNN@Z
?SetHiacPort@CScriptWorker@@UAEXNHNN@Z
?LeapFrog@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@NNNNNN@Z
?FollowStep@CScriptWorker@@UAEXNNN@Z
?SynTimeOn@CScriptWorker@@UAENXZ
?SynTimeOff@CScriptWorker@@UAEXXZ
?SetFlyCutMode@CScriptWorker@@UAEXNNNN@Z
?SetSynFollowTap@CScriptWorker@@UAEXNNN@Z
?Ctrlpos2CutposRatio@CScriptWorker@@UAEXN@Z
?ToolProcess@CScriptWorker@@UAEXPAHH@Z
?ToolPrepare@CScriptWorker@@UAEXPAHH@Z
?ToolChange@CScriptWorker@@UAEXXZ
?AHome@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?SetCustomOffset@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?RHome@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?CoorSet@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?SingleCoorSet@CScriptWorker@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV?$CAxisPoint@$08@@@Z
?TaskBefore@CScriptWorker@@UAEXXZ
?TaskAfter@CScriptWorker@@UAEXW4EEndReason@@@Z
?ConditionMove@CScriptWorker@@UAEXPAUNcConditionMove@@_N@Z
?ConditionMovePos@CScriptWorker@@UAEHAAUNcConditionMovePos@@ABV?$CAxisPoint@$08@@_N@Z
?CyclePause@CScriptWorker@@UAEXW4cyclepause_t@NcCyclePause@@@Z
?UpdateTotalOffset@CScriptWorker@@UAE_NXZ
?ToMachineCoor@CScriptWorker@@UAE_NAAV?$CAxisPoint@$08@@_N@Z
?ToFeatureCoor@CScriptWorker@@UAE_NAAV?$CAxisPoint@$08@@_N@Z
?S@CScriptWorker@@UAEXN@Z
?MachineCoor@CScriptWorker@@UAEXXZ
?SetToolCtrlMode@CScriptWorker@@UAEX_NHH@Z
?CrossCutterHeadOffset@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?DirectMoveTo@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?InsertMoveTo@CScriptWorker@@UAEXXZ
?PushTransform@CScriptWorker@@UAEXPAUNcCode@@@Z
?Transform@CScriptWorker@@UAEXPAUNcCircle@@@Z
?Transform@CScriptWorker@@UAEXPAUNcArcTo@@@Z
?RevTransform@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@AAV2@@Z
?ForceMachiningOn@CScriptWorker@@UAEXXZ
?ForceMachiningOff@CScriptWorker@@UAEXXZ
?CuttingConversion@CScriptWorker@@UAEXH@Z
?UpdateProgress@CScriptWorker@@UAE?AW4work_status@@IIII@Z
?CheckWorkStatus@CScriptWorker@@UAE?AW4work_status@@XZ
?SpindleInterpSwitch@CScriptWorker@@UAEX_N@Z
?SetSpindleDir@CScriptWorker@@UAEXH@Z
?SpindleLinkageSwitch@CScriptWorker@@UAEX_N@Z
?IsStartOfRange@CScriptWorker@@UAE_NXZ
?SetGraphFlag@CScriptWorker@@UAEXNN@Z
?SetCurve@CScriptWorker@@UAEXAAV?$CAxisPoint@$08@@@Z
?SetOverLap@CScriptWorker@@UAEXNNN@Z
?HpcsSwitch@CScriptWorker@@UAEXNNN@Z
?SetWorkCoorIndex@CScriptWorker@@UAEXPBD@Z
?SetToolIndex@CScriptWorker@@UAEXH@Z
?SynOffsetInfo@CScriptWorker@@UAEXPBD@Z
?PosSyn@CScriptWorker@@UAEXXZ
?EnableCutterCompensation@CScriptWorker@@UAEXXZ
?DisableCutterCompensation@CScriptWorker@@UAEXXZ
?SetRawCoor@CScriptWorker@@UAEX_NABV?$CAxisPoint@$08@@@Z
?SetSynData@CScriptWorker@@UAEXHNNEPBE@Z
?FeatureCoorSystemBasedOn2Vectors@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@00@Z
?FeatureCoorSystemBasedOn3Points@CScriptWorker@@UAEXNABV?$CAxisPoint@$08@@000@Z
?FeatureCoorSystemBasedOnRollPitchYaw@CScriptWorker@@UAEXNABV?$CAxisPoint@$08@@0@Z
?FeatureCoorSystemBasedOnEulerAngle@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@0@Z
?IsFeatureCoorSystemOn@CScriptWorker@@UAE_NXZ
?ShiftOff@CScriptWorker@@UAEXXZ
?ShiftOn@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?RotateOff@CScriptWorker@@UAEXXZ
?RotateOn@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@N@Z
?MirrorOn@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?ScaleOff@CScriptWorker@@UAEXXZ
?ScaleOn@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@0@Z
?ScaleOn@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@N@Z
?ClcOff@CScriptWorker@@UAEXXZ
?ClcOn@CScriptWorker@@UAEXN_N@Z
?CrcOff@CScriptWorker@@UAEXXZ
?CrcOn@CScriptWorker@@UAEXN_N@Z
?PlaneSelect@CScriptWorker@@UAEXN@Z
?PlaneSelect@CScriptWorker@@UAEXNNN@Z
?ArcIncEx@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@0_N@Z
?ArcInc@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@0N_N@Z
?LineInc@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@@Z
?MoveInc@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@@Z
?ArcToEx@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@0_N@Z
?MoveTo@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@@Z
?F@CScriptWorker@@UAEXN@Z
?CancelTransform@CScriptWorker@@UAEXXZ
?GetTransformFlag@CScriptWorker@@UAE_NXZ
?DisableTransform@CScriptWorker@@UAEXXZ
?EnableTransform@CScriptWorker@@UAEXXZ
?IsCuttingConversionEnable@CScriptWorker@@UAE_NXZ
?SynM@CScriptWorker@@UAEXXZ
?SynCore@CScriptWorker@@UAEXXZ
?RotaryLen2Deg@CScriptWorker@@UBENNH@Z
?RotaryLen2Deg@CScriptWorker@@UAEXAAV?$CAxisPoint@$08@@@Z
?RotaryDeg2Len@CScriptWorker@@UBENNH@Z
?RotaryDeg2Len@CScriptWorker@@UAEXAAV?$CAxisPoint@$08@@@Z
?DoRead@CScriptWorker@@UAE_NXZ
??0CScriptWorker@@QAE@PBD@Z
??1CScriptWorker@@UAE@XZ
?Reset@CScriptWorker@@UAE_NXZ
?InitParam@CScriptWorker@@UAE_NXZ
?ResetRange@CScriptWorker@@UAEXXZ
?ReadSetting@CScriptWorker@@UAE_NPAUlua_State@@@Z
?WriteSetting@CScriptWorker@@UAE_NPAUlua_State@@@Z
?LuaInitialize@CScriptWorker@@UAE_NXZ
?DoString@CScriptWorker@@UAE_NPBD@Z
?GetTotalOffset@CScriptWorker@@UAEABV?$CAxisPoint@$08@@XZ
?Transform@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@AAV2@@Z
?EnterAtom@CScriptWorker@@UAEXXZ
?MoveToSafeHeight@CScriptWorker@@UAEXN@Z
?LeaveAtom@CScriptWorker@@UAEXXZ
?GotoNextPath@CScriptWorker@@UAEXABV?$CAxisPoint@$08@@@Z
?LineTo@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@@Z
?Initialize@CScriptWorker@@UAE_NPAUlua_State@@@Z
?SynIfNeed@CScriptWorker@@UAEXXZ
?Syn@CScriptWorker@@UAEXXZ
?Write@CScriptWorker@@UAEXPAUNcCode@@@Z
?Do@CScriptWorker@@UAE_NXZ
?ArcTo@CScriptWorker@@UAE_NABV?$CAxisPoint@$08@@0N_N@Z
?MirrorOff@CScriptWorker@@UAEXAAY08$$CB_N@Z
msvcp100
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
_Nan
msvcr100
memset
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
__CxxFrameHandler3
_malloc_crt
_hypot
_purecall
memmove
_stricmp
_vsnprintf_s
atof
sprintf_s
_stat64
strncpy_s
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
_CIatan
??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
??3@YAXPAX@Z
_CIsin
_CIcos
_CIsqrt
memcpy
free
_CxxThrowException
zua
lua_settable
lua_setglobal
luaL_setfuncs
lua_createtable
lua_pushboolean
luaL_checknumber
lua_topointer
lua_pushlightuserdata
luaL_checklstring
lua_tolstring
lua_pcallk
lua_getfield
lua_type
lua_settop
lua_getglobal
Exports
Exports
CreateDxfParser
DeleteDxfParser
DoString
LoadFile
LoadMemory
SetModal
Unload
luaopen_DxfParser
Sections
.text Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ