c:\programming_2012\basiq\public.sdk\samples\vst2.x\win\x64\release\basiQ.pdb
Static task
static1
1 signatures
General
-
Target
basiQ.dll
-
Size
5.5MB
-
MD5
3d7cb306f1c89ef91d637531a7381ad3
-
SHA1
0354d33848e309edf1b3647b831450ecae204e03
-
SHA256
eebd103815ec48039bf49dbac829c061483ca7d2cc7da1435233d197f3478a98
-
SHA512
02cddd7f002f3a76a754128eb27d2723e3f22fc288fb1b2400011db59c767487654751274d6382e95c978691f48e87d08a1cad002c8e9c6fc086686f6e6607ab
-
SSDEEP
98304:rpgco30eP3pOPzDEzN+TQqR9C85i5Q6y5kMF1Dvbpyt76BPQ:Wn30Z4zNnY65MFdvlrPQ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource basiQ.dll
Files
-
basiQ.dll.dll windows:4 windows x64 arch:x64
bb475839a8d6078c34c143a7b7abcaac
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
kernel32
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoW
GetLocaleInfoA
HeapReAlloc
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStringTypeW
FreeEnvironmentStringsA
HeapSize
GetOEMCP
GetACP
GetCPInfo
ReadFile
ExitProcess
CloseHandle
SetFilePointer
FlsAlloc
TlsSetValue
SetLastError
FlsFree
TlsFree
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
CreateFileA
SetEndOfFile
GetVersionExA
LockResource
LoadLibraryA
GlobalFree
GetProcAddress
GetLastError
GlobalUnlock
MultiByteToWideChar
SizeofResource
GlobalLock
GlobalSize
LoadResource
FreeLibrary
FindResourceA
WideCharToMultiByte
Sleep
GetTickCount
GetModuleFileNameA
GetEnvironmentStrings
FlsGetValue
GetModuleHandleA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
WriteFile
HeapDestroy
HeapCreate
HeapSetInformation
DeleteCriticalSection
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
EnterCriticalSection
LeaveCriticalSection
RtlUnwindEx
HeapAlloc
RtlPcToFileHeader
GetCurrentThreadId
FlsSetValue
GetCommandLineA
GetProcessHeap
RtlVirtualUnwind
RtlLookupFunctionEntry
RaiseException
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
CreateFileW
user32
DestroyMenu
DispatchMessageA
MessageBoxA
SetMenuItemInfoA
PeekMessageA
AppendMenuA
SetWindowLongPtrA
EndPaint
SetCursor
GetClassNameA
GetUpdateRgn
FillRect
SetCapture
DrawTextA
GetKeyState
LoadBitmapA
GetParent
TrackMouseEvent
BeginPaint
GetDC
GetAsyncKeyState
InvalidateRect
UnregisterClassA
GetWindowLongA
ReleaseDC
DefWindowProcA
SetWindowPos
GetCursorPos
GetCursor
ReleaseCapture
GetSystemMetrics
MapWindowPoints
LoadCursorA
RegisterClassA
DestroyWindow
GetWindowRect
GetWindowLongPtrA
TrackPopupMenu
GetDoubleClickTime
CreateWindowExA
CreatePopupMenu
gdi32
MoveToEx
BitBlt
LineTo
SetTextColor
DeleteDC
CreateDIBSection
GetCurrentObject
SetBkColor
CreateBitmap
SetBkMode
SelectObject
SelectClipRgn
CreatePenIndirect
CreateCompatibleDC
DPtoLP
CreateCompatibleBitmap
CreateBrushIndirect
CreateRectRgn
SetROP2
GetObjectA
GetStockObject
CreateSolidBrush
CreateFontIndirectA
DeleteObject
comdlg32
GetOpenFileNameA
GetSaveFileNameA
shell32
DragQueryFileA
ShellExecuteA
ole32
OleInitialize
OleUninitialize
RevokeDragDrop
CoCreateInstance
RegisterDragDrop
Exports
Exports
VSTPluginMain
main
Sections
.text Size: 373KB - Virtual size: 372KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
TEXT Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 112KB - Virtual size: 111KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 12KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 22KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 5.0MB - Virtual size: 5.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 21KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ