D:\Project2\sources\Module\x64\Release\sGameOverlayRenderer64.pdb
Static task
static1
1 signatures
General
-
Target
+++.dll
-
Size
572KB
-
MD5
d0dbdf58c33371a48461a6b9ba109c51
-
SHA1
dbff83b8fe1b86b2c5a364f94857e9ff8d857092
-
SHA256
903f771f14be8c16604c0ee56409f71f04969549efbea4fd7e5672f0e342f8cc
-
SHA512
53cfa672911aa543466b8f2ce3b6e27d423d6797bf9f6c9124e18ba822205328737cc3de030910deecb99219bbaceabfc1914e669701a3b6b37113ac4fe35270
-
SSDEEP
12288:J1WAXn+uQ4tUXgn+Rwpc7IuHnUh6oL4fcyBKO2:J1WAX95tUQnrc7IuHnUMcyBKb
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource +++.dll
Files
-
+++.dll.dll windows:6 windows x64 arch:x64
c906236c32560a43f190549b5ccba6e3
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
opengl32
glClear
kernel32
SetThreadExecutionState
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
QueryPerformanceCounter
QueryPerformanceFrequency
VerSetConditionMask
GetLastError
GetModuleHandleExW
FormatMessageW
GlobalFree
GetCurrentProcess
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GlobalAlloc
FreeLibrary
GetModuleHandleW
LoadLibraryA
GlobalUnlock
WideCharToMultiByte
GlobalLock
MultiByteToWideChar
GetProcAddress
VirtualQuery
AddVectoredExceptionHandler
CreateThread
Sleep
GetModuleHandleA
VirtualProtect
GetModuleFileNameA
TerminateProcess
user32
GetRawInputDeviceList
GetRawInputDeviceInfoA
EnumDisplayMonitors
EnumDisplayDevicesW
EnumDisplaySettingsExW
EnumDisplaySettingsW
ChangeDisplaySettingsExW
ToUnicode
UnregisterClassW
UnregisterDeviceNotification
RegisterDeviceNotificationW
RegisterRawInputDevices
GetRawInputData
GetMonitorInfoW
MonitorFromWindow
SystemParametersInfoW
CreateIconIndirect
LoadImageW
DestroyIcon
LoadCursorW
GetClassLongPtrW
SetWindowLongW
GetWindowLongW
PtInRect
OffsetRect
SetRect
ClipCursor
WindowFromPoint
ScreenToClient
ClientToScreen
GetCursorPos
SetForegroundWindow
SetCursorPos
AdjustWindowRectEx
GetWindowRect
GetClientRect
SetWindowTextW
RemovePropW
GetPropW
SetPropW
GetDC
ReleaseDC
ReleaseCapture
SetCapture
MapVirtualKeyW
GetKeyState
GetActiveWindow
SetFocus
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
SetWindowPlacement
GetWindowPlacement
SetWindowPos
MoveWindow
FlashWindow
SetLayeredWindowAttributes
GetLayeredWindowAttributes
ShowWindow
DestroyWindow
CreateWindowExW
RegisterClassExW
DefWindowProcW
MsgWaitForMultipleObjects
WaitMessage
PostMessageW
SetCursor
FindWindowA
GetForegroundWindow
SetWindowLongA
SendMessageW
GetAsyncKeyState
GetSystemMetrics
GetMessageTime
GetWindowThreadProcessId
SetClipboardData
PeekMessageW
DispatchMessageW
GetClipboardData
EmptyClipboard
CloseClipboard
OpenClipboard
TrackMouseEvent
TranslateMessage
gdi32
CreateBitmap
CreateRectRgn
DeleteObject
CreateDIBSection
CreateDCW
DeleteDC
GetDeviceCaps
GetDeviceGammaRamp
SetDeviceGammaRamp
ChoosePixelFormat
DescribePixelFormat
SetPixelFormat
SwapBuffers
shell32
DragFinish
DragQueryPoint
DragQueryFileW
DragAcceptFiles
msvcp140
_Query_perf_frequency
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPEBD@Z
?_Xlength_error@std@@YAXPEBD@Z
_Thrd_sleep
_Query_perf_counter
_Xtime_get_ticks
_Strxfrm
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$ctype@D@std@@2V0locale@2@A
?id@?$collate@D@std@@2V0locale@2@A
_Strcoll
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?tolower@?$ctype@D@std@@QEBADD@Z
??1facet@locale@std@@MEAA@XZ
??0facet@locale@std@@IEAA@_K@Z
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UEAAXXZ
??Bid@locale@std@@QEAA_KXZ
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
??1_Locinfo@std@@QEAA@XZ
??0_Locinfo@std@@QEAA@PEBD@Z
imm32
ImmAssociateContextEx
ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow
vcruntime140_1
__CxxFrameHandler4
vcruntime140
memmove
memset
strchr
strstr
__std_exception_destroy
memcpy
__C_specific_handler
__current_exception
__current_exception_context
_CxxThrowException
memchr
memcmp
__std_type_info_destroy_list
__std_exception_copy
__std_terminate
api-ms-win-crt-heap-l1-1-0
malloc
free
_callnewh
realloc
api-ms-win-crt-runtime-l1-1-0
terminate
_invalid_parameter_noinfo_noreturn
_initterm_e
_initterm
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
api-ms-win-crt-stdio-l1-1-0
setvbuf
ftell
fflush
fclose
__acrt_iob_func
fseek
fwrite
_wfopen
__stdio_common_vsprintf
fread
__stdio_common_vfprintf
__stdio_common_vsscanf
api-ms-win-crt-string-l1-1-0
isblank
isspace
strncpy
isalnum
strncmp
strcmp
strcspn
toupper
strspn
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-convert-l1-1-0
strtoul
api-ms-win-crt-math-l1-1-0
cosf
ceilf
powf
floorf
fmodf
acosf
sinf
sqrtf
Sections
.text Size: 367KB - Virtual size: 366KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 179KB - Virtual size: 178KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 18KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 248B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ