D:\code\Fall_Guys_Internal\x64\Release\Fall Guys Internal.pdb
Static task
static1
1 signatures
General
-
Target
Fall.Guys.Internal.dll
-
Size
259KB
-
MD5
4a5b3eee72744a0dfed3b118cc9ef05e
-
SHA1
cd17105a131e506f36a64babf67f7d61e6b8beaa
-
SHA256
7fb9a6af4eb0c21d1b401d6e1fa15839c0c80a07a2fbba4cf13de48ac1eb7921
-
SHA512
510384970c0ee2f30537c66db8752b37a86e3682ea1183d8a7ae746c7d256365cb8985a37b5c197cb800e75d82aab48b8e43e1cbcea241cdb36f68f9feebc5ef
-
SSDEEP
6144:PFsCJvHdbz9bPi8HMviz7IxRVo6d5npniMvETil:NfvHx9bK8svdHD5nJiji
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Fall.Guys.Internal.dll
Files
-
Fall.Guys.Internal.dll.dll windows:6 windows x64 arch:x64
97e25cb425070c6cd750c9e90d3fe750
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
kernel32
CreateThread
MultiByteToWideChar
GlobalAlloc
GlobalFree
GlobalLock
WideCharToMultiByte
GlobalUnlock
QueryPerformanceFrequency
GetProcAddress
QueryPerformanceCounter
GetModuleHandleA
VirtualQuery
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
FreeConsole
DisableThreadLibraryCalls
CreateEventW
GetModuleHandleW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
SetConsoleTitleA
CloseHandle
FreeLibraryAndExitThread
AllocConsole
user32
FindWindowA
GetKeyState
LoadCursorA
SetWindowLongPtrW
CallWindowProcW
GetAsyncKeyState
SetClipboardData
GetClipboardData
EmptyClipboard
CloseClipboard
OpenClipboard
GetCursorPos
SetCursorPos
ReleaseCapture
GetClientRect
SetCursor
SetCapture
ScreenToClient
GetCapture
ClientToScreen
IsChild
GetForegroundWindow
msvcp140
_Thrd_sleep
_Xtime_get_ticks
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_XGetLastError@std@@YAXXZ
?__ExceptionPtrToBool@@YA_NPEBX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
_Query_perf_frequency
_Query_perf_counter
imm32
ImmSetCompositionWindow
ImmGetContext
ImmReleaseContext
d3dcompiler_47
D3DCompile
xinput1_4
ord4
ord2
vcruntime140_1
__CxxFrameHandler4
vcruntime140
_CxxThrowException
__C_specific_handler
__current_exception_context
memset
__std_type_info_destroy_list
strstr
__std_exception_copy
__std_exception_destroy
memchr
memcmp
memcpy
memmove
__current_exception
api-ms-win-crt-stdio-l1-1-0
ftell
fflush
fclose
fseek
__stdio_common_vsprintf
__stdio_common_vfprintf
_wfopen
__acrt_iob_func
freopen
fread
__stdio_common_vsnprintf_s
fwrite
__stdio_common_vsscanf
api-ms-win-crt-runtime-l1-1-0
_initterm
_cexit
_seh_filter_dll
_crt_atexit
_execute_onexit_table
_configure_narrow_argv
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
terminate
_initterm_e
exit
api-ms-win-crt-string-l1-1-0
strncpy
strcmp
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-heap-l1-1-0
_callnewh
free
malloc
api-ms-win-crt-convert-l1-1-0
atof
api-ms-win-crt-math-l1-1-0
sinf
sqrtf
cosf
ceilf
floorf
acosf
powf
fmodf
Sections
.text Size: 203KB - Virtual size: 202KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 44KB - Virtual size: 43KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 136B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ