D:\a\input-overlay\input-overlay\plugin\build_client_x64\RelWithDebInfo\io_client.pdb
Static task
static1
1 signatures
General
-
Target
io_client.exe
-
Size
253KB
-
MD5
6d5c0d64e41cf83321f153341b11a692
-
SHA1
b304d70c0e7f153c38c4d63b41ca94b4e3b1db80
-
SHA256
40d759fec3bcc2ccd4b23528c43d92b24e7b5c20606a510b809f0c86aa89d049
-
SHA512
f247f769160278e6081c5f7d820cf83cc050f4c0d3a3791205fee7a156e8917096ef0e3c5b22e732697addad681dac105aa627eda02515eacdb74474d34f9ea6
-
SSDEEP
3072:UqZZCcyyxGITikdL4qp59hARohUlCMf1BFJ/INCRmF:UqZMcyyxGeRhvLAOhUlCCBFeCRmF
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource io_client.exe
Files
-
io_client.exe.exe windows:6 windows x64 arch:x64
374970b506a54a9a764833508e55726c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
sdl2
SDL_Quit
SDL_WasInit
SDL_Init
SDL_GetVersion
SDL_Delay
SDL_SetHint
SDL_PeepEvents
SDL_PumpEvents
SDL_GameControllerClose
SDL_GameControllerOpen
SDL_GameControllerAddMappingsFromRW
SDL_DestroyWindow
SDL_CreateWindow
SDL_RWFromFile
SDL_GetError
SDL_GameControllerTypeForIndex
SDL_GameControllerNameForIndex
SDL_SetMainReady
ws2_32
WSAStartup
sendto
__WSAFDIsSet
accept
bind
send
WSAGetLastError
closesocket
connect
ioctlsocket
getsockname
getsockopt
listen
recv
recvfrom
select
socket
setsockopt
advapi32
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
kernel32
MultiByteToWideChar
GetTickCount
GetSystemTimeAsFileTime
SetLastError
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
WideCharToMultiByte
GetSystemTime
LoadLibraryA
GetProcAddress
FreeLibrary
GetSystemDirectoryA
GetLastError
QueryPerformanceCounter
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleA
GetCurrentProcessId
InitializeSListHead
GetCurrentThreadId
user32
SystemParametersInfoA
SetWinEventHook
UnhookWinEvent
GetDoubleClickTime
GetSystemMetrics
EnumDisplayMonitors
ActivateKeyboardLayout
GetKeyboardLayoutNameA
GetKeyboardLayoutList
GetKeyboardLayout
GetAsyncKeyState
GetForegroundWindow
GetWindowThreadProcessId
GetMonitorInfoA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetKeyState
ShowWindow
CreateWindowExA
RegisterClassExA
PostQuitMessage
DefWindowProcA
PostThreadMessageA
GetMessageTime
DispatchMessageA
TranslateMessage
GetMessageA
msvcp140
?_Xlength_error@std@@YAXPEBD@Z
_Mtx_init_in_situ
?_Throw_Cpp_error@std@@YAXH@Z
_Cnd_do_broadcast_at_thread_exit
_Mtx_unlock
_Mtx_lock
_Thrd_id
_Thrd_join
_Thrd_sleep
_Query_perf_frequency
_Query_perf_counter
_Xtime_get_ticks
?_Xout_of_range@std@@YAXPEBD@Z
_Mtx_destroy_in_situ
vcruntime140
memset
strchr
strrchr
memchr
memcmp
memcpy
memmove
__std_type_info_destroy_list
_purecall
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__CxxFrameHandler3
__C_specific_handler
__current_exception
__current_exception_context
api-ms-win-crt-string-l1-1-0
isprint
isspace
strncpy
isxdigit
strcpy_s
strcat_s
strncmp
tolower
api-ms-win-crt-filesystem-l1-1-0
_mkdir
rename
remove
_wstat64
api-ms-win-crt-runtime-l1-1-0
_beginthreadex
signal
exit
_invalid_parameter_noinfo_noreturn
_register_thread_local_exe_atexit_callback
_errno
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
_seh_filter_exe
_set_app_type
terminate
_get_initial_narrow_environment
_initterm
_initterm_e
_exit
_c_exit
__p___argc
__p___argv
api-ms-win-crt-stdio-l1-1-0
fread
__stdio_common_vfprintf
__p__commode
fseek
fputc
fopen
_set_fmode
ftell
fwrite
__stdio_common_vsprintf
__stdio_common_vsscanf
__acrt_iob_func
_wfopen
fclose
fgetc
api-ms-win-crt-heap-l1-1-0
calloc
_set_new_mode
malloc
free
_callnewh
realloc
api-ms-win-crt-utility-l1-1-0
rand
api-ms-win-crt-convert-l1-1-0
strtol
atoi
strtof
strtod
api-ms-win-crt-time-l1-1-0
_time64
strftime
_localtime64
_gmtime64
api-ms-win-crt-math-l1-1-0
ceilf
__setusermatherr
_dclass
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Exports
Exports
hook_create_screen_info
hook_get_auto_repeat_delay
hook_get_auto_repeat_rate
hook_get_multi_click_time
hook_get_pointer_acceleration_multiplier
hook_get_pointer_acceleration_threshold
hook_get_pointer_sensitivity
hook_run
hook_set_dispatch_proc
hook_set_logger_proc
hook_stop
Sections
.text Size: 173KB - Virtual size: 172KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 1024B - Virtual size: 777B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 373B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ