C:\Users\PC User\Desktop\DLL UNLOAD\obj\x64\Release\DLL UNLOAD.pdb
Static task
static1
1 signatures
General
-
Target
MXT-Release-1.1.2.rar
-
Size
1.9MB
-
MD5
1cacb9e65afa70e3130d550567ec80a4
-
SHA1
3e52d8c1b47ba2956c2eb72c480147221084ed26
-
SHA256
c53a495ce0ad0d2b0eb70845ad343ae38d7c931fd6a28112defdbeaaf0a5f89c
-
SHA512
75d04d906dc47b13beba803b859c7a6bb46522661c34cbba2f56b597c070f36f2cf0199b2351e7d9c9a7fdbbc58042df51e156bce19b69bce03ee752bbd67400
-
SSDEEP
24576:vQH6DZjNwGQ3lbMggf9eb1aj31rf0/d0ypkaIbiiA+ESc/Y7KL2fMal3:vQgwN1bMMWFg1hVnm2GKKfM+3
Score
3/10
Malware Config
Signatures
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
resource unpack001/DLL_UNLOAD.exe unpack001/Dx11 ImGui - Black Ops lll.dll
Files
-
MXT-Release-1.1.2.rar.rar
-
DLL_UNLOAD.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Dx11 ImGui - Black Ops lll.dll.dll windows:6 windows x64 arch:x64
665e507e3fc0cd2add8134eb672030ed
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\Users\newto\Desktop\Dx11 ImGui - Black Ops lll\x64\Release\Dx11 ImGui - Black Ops lll.pdb
Imports
d3dcompiler_47
D3DCompile
d3d11
D3D11CreateDeviceAndSwapChain
urlmon
URLOpenBlockingStreamW
shell32
SHGetFolderPathA
user32
DefWindowProcA
CallWindowProcA
GetAsyncKeyState
LoadCursorA
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
SetCursorPos
GetClientRect
GetForegroundWindow
ReleaseCapture
SetCapture
GetCapture
GetKeyState
TrackMouseEvent
EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
FindWindowExA
FindWindowA
SendMessageA
SetWindowLongPtrA
DestroyWindow
CreateWindowExA
RegisterClassExA
UnregisterClassA
kernel32
GetOEMCP
GetACP
IsValidCodePage
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
CreateProcessW
GetExitCodeProcess
WaitForSingleObject
GetFileType
GetStdHandle
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
ReadFile
RtlUnwind
GetModuleHandleA
Sleep
CreateThread
ExitThread
VirtualProtect
RtlCaptureStackBackTrace
GetProcAddress
GetModuleFileNameA
CloseHandle
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
OpenThread
SuspendThread
ResumeThread
GetThreadContext
SetThreadContext
CreateToolhelp32Snapshot
Thread32First
Thread32Next
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
QueryPerformanceCounter
QueryPerformanceFrequency
FreeLibrary
LoadLibraryA
GetTickCount
GetSystemInfo
VirtualAlloc
VirtualFree
VirtualQuery
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
GetCurrentProcess
FlushInstructionCache
GetModuleHandleW
K32GetModuleInformation
GetTickCount64
FormatMessageA
LocalFree
GetLocaleInfoEx
GetCommandLineA
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
AreFileApisANSI
GetLastError
GetFileInformationByHandleEx
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
EncodePointer
DecodePointer
LCMapStringEx
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetSystemTimeAsFileTime
CompareStringEx
GetCPInfo
GetStringTypeW
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
LoadLibraryExW
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetProcessHeap
HeapSize
SetEndOfFile
WriteConsoleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlPcToFileHeader
RaiseException
RtlUnwindEx
InterlockedFlushSList
SetLastError
imm32
ImmSetCompositionWindow
ImmAssociateContextEx
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow
Sections
.text Size: 945KB - Virtual size: 944KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 7KB - Virtual size: 45.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 41KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 432B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
MXT Backgrounds/mxt_bg_image_0.png.jpg
-
MXT Backgrounds/mxt_bg_image_1.png.jpg
-
MXT Backgrounds/mxt_bg_image_2.png.png
-
MXT Backgrounds/mxt_bg_image_3.png.jpg
-
MXT Backgrounds/mxt_bg_image_4.png.jpg
-
mxt_data_table.txt
-
mxt_load_styles.txt
-
mxt_lua_editor.lua
-
mxt_stat_editor.txt
-
mxt_visual_presets.txt