G:\GAMES PC BIS (Manque de place sur l'autre HDD)\Call of Duty Collection\[Client mods]\IW7\iw7-mod\build\bin\x64\Debug\iw7-mod.pdb
Static task
static1
1 signatures
General
-
Target
custom_iw7_mod.zip
-
Size
2.7MB
-
MD5
0dee0ca03756ba9ef3bb65547128f3f2
-
SHA1
756a9bc3d22ee1e75acfd2efaf625eaffcf96b43
-
SHA256
63b779cc232380f91887ab137c7f64934da8dc94e78dd53f35a1a0f7992f688d
-
SHA512
a1634d5e6681e65a7f09efc7f37c36b5a4eedb5f6b942785116a26ac98dc7be60d53cfb2f55b5eb28fbc4292a6482bc56e3408ebcbd42a87cdd437e9b19a8ce4
-
SSDEEP
49152:HZUCFPUTzgscuzWD4wqIOgm05u7HLKJxJUk3WeO10F3Y+bnr/BCiVvE:HZU+PkzrajWaujOTx3WeO10FI+hJ6
Score
3/10
Malware Config
Signatures
-
Unsigned PE 3 IoCs
Checks for missing Authenticode signature.
resource unpack001/custom iw7 mod/iw7-mod.exe unpack001/custom iw7 mod/runner.exe unpack001/custom iw7 mod/tlsdll.dll
Files
-
custom_iw7_mod.zip.zip
-
custom iw7 mod/desktop.ini
-
custom iw7 mod/iw7-mod.exe.exe windows:6 windows x64 arch:x64
4510417620632345ed6df527db21f924
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
kernel32
GetModuleHandleExW
RtlAddFunctionTable
VirtualProtect
VerSetConditionMask
VerifyVersionInfoW
SetThreadAffinityMask
DecodePointer
GetLastError
SetLastError
InitializeCriticalSectionEx
MultiByteToWideChar
GetTickCount64
GetCurrentProcess
SetUnhandledExceptionFilter
GetConsoleWindow
RtlUnwind
SetThreadContext
GetThreadContext
HeapDestroy
HeapCreate
GetModuleHandleExA
MapViewOfFile
CreateFileMappingW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
GetACP
SetConsoleTitleA
GetFileSizeEx
GetTimeZoneInformation
GetConsoleOutputCP
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
HeapQueryInformation
HeapReAlloc
GetModuleHandleW
GetModuleFileNameW
GetModuleFileNameA
CloseHandle
GetVersionExA
UnmapViewOfFile
TerminateProcess
MulDiv
GetModuleHandleA
CreateThread
DeleteCriticalSection
InitializeCriticalSection
LocalFree
GetVolumeInformationA
GetProcAddress
SetStdHandle
SetConsoleCtrlHandler
WriteFile
ExitProcess
WriteConsoleW
GetFileType
GetStdHandle
FreeLibraryAndExitThread
ExitThread
GetSystemInfo
HeapValidate
HeapSize
ReadConsoleW
GetConsoleMode
CreatePipe
DuplicateHandle
TlsFree
TlsSetValue
AddVectoredExceptionHandler
IsValidCodePage
TlsGetValue
TlsAlloc
GetCommandLineA
GetCurrentDirectoryA
CreateProcessA
FreeLibrary
LoadResource
LockResource
SizeofResource
LoadLibraryA
FindResourceA
FlushInstructionCache
VirtualAlloc
VirtualFree
GlobalUnlock
GlobalLock
GetSystemFirmwareTable
VirtualQuery
GetCommandLineW
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
OpenThread
SuspendThread
ResumeThread
GetThreadId
CreateToolhelp32Snapshot
Thread32First
Thread32Next
CreateFileA
FlushFileBuffers
ReadFile
SetFilePointer
GetTempPathA
GetTempFileNameA
DeleteFileA
MoveFileA
IsDebuggerPresent
OutputDebugStringW
RaiseException
EnterCriticalSection
LeaveCriticalSection
QueryPerformanceCounter
QueryPerformanceFrequency
WaitForSingleObjectEx
Sleep
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryEnterCriticalSection
FormatMessageA
GetLocaleInfoEx
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesW
GetFileAttributesExW
GetFileInformationByHandle
GetFinalPathNameByHandleW
GetFullPathNameW
SetEndOfFile
SetFileAttributesW
SetFileInformationByHandle
SetFilePointerEx
SetFileTime
GetTempPathW
AreFileApisANSI
DeviceIoControl
CreateDirectoryExW
CopyFileW
MoveFileExW
CreateHardLinkW
GetFileInformationByHandleEx
CreateSymbolicLinkW
WideCharToMultiByte
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
InitOnceExecuteOnce
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
FreeLibraryWhenCallbackReturns
CreateThreadpoolWork
SubmitThreadpoolWork
CloseThreadpoolWork
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
EncodePointer
LCMapStringEx
CompareStringEx
GetCPInfo
GetStringTypeW
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
CreateEventW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
IsProcessorFeaturePresent
GetStartupInfoW
InitializeSListHead
HeapAlloc
HeapFree
GetProcessHeap
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
LoadLibraryExW
OutputDebugStringA
user32
TranslateMessage
DispatchMessageA
PeekMessageA
GetShellWindow
DefWindowProcA
CallWindowProcA
RegisterClassA
CreateWindowExA
GetWindowThreadProcessId
SendMessageA
GetClipboardData
CloseClipboard
OpenClipboard
DestroyWindow
ShowWindow
CloseWindow
SetFocus
UnregisterClassA
ShowCursor
MessageBoxA
LoadImageA
DestroyIcon
LoadIconA
LoadCursorA
GetDesktopWindow
SetWindowLongPtrA
AdjustWindowRect
GetWindowTextA
SetWindowTextA
ReleaseDC
GetDC
gdi32
SetBkColor
GetDeviceCaps
DeleteObject
CreateSolidBrush
CreateFontA
SetTextColor
advapi32
CryptAcquireContextW
CryptReleaseContext
CryptAcquireContextA
RegSetValueExA
RegCreateKeyA
GetUserNameA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetCurrentHwProfileA
CryptGenRandom
ntdll
NtQueryObject
ws2_32
freeaddrinfo
getaddrinfo
__WSAFDIsSet
closesocket
connect
ioctlsocket
getpeername
getsockname
recv
recvfrom
select
send
sendto
gethostbyname
WSASetLastError
crypt32
CryptProtectData
dbghelp
MiniDumpWriteDump
shell32
CommandLineToArgvW
Exports
Exports
AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
SteamAPI_GetHSteamPipe
SteamAPI_GetHSteamUser
SteamAPI_GetSteamInstallPath
SteamAPI_Init
SteamAPI_RegisterCallResult
SteamAPI_RegisterCallback
SteamAPI_RestartAppIfNecessary
SteamAPI_RunCallbacks
SteamAPI_Shutdown
SteamAPI_UnregisterCallResult
SteamAPI_UnregisterCallback
SteamApps
SteamFriends
SteamGameServer
SteamGameServer_GetHSteamPipe
SteamGameServer_GetHSteamUser
SteamGameServer_Init
SteamGameServer_RunCallbacks
SteamGameServer_Shutdown
SteamInternal_CreateInterface
SteamInternal_GameServer_Init
SteamMatchmaking
SteamNetworking
SteamRemoteStorage
SteamUser
SteamUserStats
SteamUtils
Sections
.text Size: 3.3MB - Virtual size: 3.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 231KB - Virtual size: 335KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 268KB - Virtual size: 268KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.msvcjmc Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 2.5MB - Virtual size: 2.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
custom iw7 mod/runner.exe.exe windows:6 windows x64 arch:x64
fc7765b352beec7ab95d8262366d9443
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
G:\GAMES PC BIS (Manque de place sur l'autre HDD)\Call of Duty Collection\[Client mods]\IW7\iw7-mod\build\bin\x64\Debug\runner.pdb
Imports
kernel32
GetCurrentProcess
GetCurrentThread
SetThreadPriority
CloseHandle
WaitForSingleObject
OpenProcess
CreateFileW
DebugActiveProcess
WaitForDebugEvent
GetCommandLineA
ContinueDebugEvent
WaitForSingleObjectEx
Sleep
SwitchToThread
GetCurrentThreadId
GetExitCodeThread
GetNativeSystemInfo
QueryPerformanceCounter
QueryPerformanceFrequency
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
TryEnterCriticalSection
DeleteCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
FormatMessageA
SetFileInformationByHandle
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolWork
SubmitThreadpoolWork
CloseThreadpoolWork
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
IsDebuggerPresent
RaiseException
MultiByteToWideChar
WideCharToMultiByte
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetCurrentProcessId
InitializeSListHead
GetStartupInfoW
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlUnwindEx
RtlPcToFileHeader
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
CreateThread
ExitThread
ResumeThread
FreeLibraryAndExitThread
GetModuleHandleExW
HeapSize
HeapValidate
GetSystemInfo
GetStdHandle
WriteFile
ExitProcess
GetTempPathW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
SetConsoleCtrlHandler
GetFileType
OutputDebugStringW
WriteConsoleW
GetFileSizeEx
SetFilePointerEx
HeapReAlloc
HeapQueryInformation
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetStringTypeW
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadFile
ReadConsoleW
RtlUnwind
advapi32
AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueA
Sections
.text Size: 744KB - Virtual size: 743KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 186KB - Virtual size: 186KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 38KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.msvcjmc Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 104KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
custom iw7 mod/tlsdll.dll.dll windows:6 windows x64 arch:x64
61120c9261bccc72a890f8579eadac3d
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\Users\Thethird\Documents\GitHub\iw7-mod\build\bin\x64\Debug\tlsdll.pdb
Imports
kernel32
GetCurrentThreadId
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
RaiseException
MultiByteToWideChar
WideCharToMultiByte
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
GetProcAddress
GetCurrentProcess
TerminateProcess
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
RtlPcToFileHeader
RtlUnwind
GetModuleHandleExW
ExitProcess
HeapSize
HeapValidate
GetSystemInfo
GetStdHandle
GetFileType
WriteFile
OutputDebugStringW
WriteConsoleW
SetConsoleCtrlHandler
GetCurrentThread
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapReAlloc
HeapQueryInformation
GetStringTypeW
SetStdHandle
GetFileSizeEx
SetFilePointerEx
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadFile
ReadConsoleW
CloseHandle
CreateFileW
Exports
Exports
?get_tls_data@@YAPEAXXZ
Sections
.text Size: 624KB - Virtual size: 624KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 170KB - Virtual size: 169KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 32KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.msvcjmc Size: 512B - Virtual size: 1B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ