D:\Desktop\SCA\x64\Release\ZsFz4pKl3.pdb
Static task
static1
1 signatures
General
-
Target
xray.dll
-
Size
53KB
-
MD5
1db02d234da72b45c5e8036f8233cd88
-
SHA1
ba56e024fa341b9ba9735701be2e211df41e7487
-
SHA256
86d47938c797e1eca2e58a9682fc3a43ad631b328957151384233fbc7e5558d9
-
SHA512
c0859c74cbbeeb3ee7614d2b298efb5f15b7df076b9d56545c44942759939154fb42fd0151fe30cd16e0cb6ad78a17da2f93e4fc2c1afbc40dfbcb654a9c4992
-
SSDEEP
768:nH7HMAlHbBLH8MuLKlIOQYRjaofFyHAocx5QHVJ5OaP0:bHMAZN78MuuIOQgjaofFyHAoxVJ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource xray.dll
Files
-
xray.dll.dll windows:6 windows x64 arch:x64
24368211ceeb1e89931ae2172eb20017
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
opengl32
glLoadIdentity
glMatrixMode
glPopMatrix
glPushMatrix
glOrtho
glPushAttrib
glGetIntegerv
wglUseFontBitmapsW
wglGetCurrentDC
glGenLists
glCallLists
glColor3ub
glRasterPos2f
glListBase
glPolygonOffset
glVertex3f
glLoadMatrixf
glLineWidth
glBlendFunc
glColor4f
glDisable
glGetFloatv
glBegin
glEnd
glEnable
glPopAttrib
glViewport
glDepthFunc
kernel32
RtlVirtualUnwind
RtlLookupFunctionEntry
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetCurrentProcessId
GetSystemTimeAsFileTime
SetLastError
VirtualQueryEx
VirtualProtectEx
VirtualQuery
VirtualFree
VirtualProtect
VirtualAlloc
FlushInstructionCache
SetThreadContext
GetThreadContext
InitializeSListHead
GetCurrentThreadId
GetTickCount64
GetLastError
GetCurrentThread
CreateThread
GetProcAddress
GetModuleHandleW
QueryPerformanceCounter
GetTickCount
GetCurrentProcess
SuspendThread
ResumeThread
RtlCaptureContext
user32
CallNextHookEx
DispatchMessageW
WindowFromDC
TranslateMessage
SetWindowsHookExW
GetMessageW
GetWindowThreadProcessId
gdi32
CreateFontA
SelectObject
DeleteObject
msvcp140
?_Xlength_error@std@@YAXPEBD@Z
winmm
timeGetTime
vcruntime140
_CxxThrowException
__C_specific_handler
memset
memcpy
__std_exception_copy
__std_type_info_destroy_list
__std_exception_destroy
memmove
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vsprintf_s
api-ms-win-crt-runtime-l1-1-0
_initterm_e
_initterm
_cexit
_invalid_parameter_noinfo_noreturn
_initialize_onexit_table
_initialize_narrow_environment
_execute_onexit_table
_configure_narrow_argv
_seh_filter_dll
_register_onexit_function
_crt_atexit
api-ms-win-crt-string-l1-1-0
strcmp
api-ms-win-crt-heap-l1-1-0
malloc
_callnewh
free
Sections
.text Size: 30KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.detourc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.detourd Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ