C:\Users\Gebruiker.EGON\source\repos\eternal_internal\cheat\x64\Release\eternal_internal.pdb
Static task
static1
1 signatures
General
-
Target
eternal_internal.dll
-
Size
2.0MB
-
MD5
7d35e909405c5735584edce801714800
-
SHA1
07baaab81e9e8ae8b4d96a599172dcbf9cc1b26b
-
SHA256
657575491df72abdf09c93b28883f50d6cbc7549b0b426a5b607dfc5687e07ca
-
SHA512
a8b0a1f9ec3fc719911a26475e03d9f06e1629bedb709def6f2a10e6d3880a5fe86a3c588028262dd62630de436b3af5c6a4429e1f6ce486cf12263aae8f73f3
-
SSDEEP
49152:Ba3B63IYjVTUOrd2efpb5JkQT6zd0f4Y:BC6kYdnpzszFY
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource eternal_internal.dll
Files
-
eternal_internal.dll.dll windows:6 windows x64 arch:x64
39f8046b16b2b8658cbb256a1125aa6c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
opengl32
glEnable
glDepthMask
glLoadMatrixf
glEnd
glMatrixMode
glTranslated
glLineWidth
glBlendFunc
glHint
glBegin
glTranslatef
glRotatef
glVertex3d
glScalef
glColor4f
glDisable
glPushMatrix
wglMakeCurrent
glViewport
glEnableClientState
glPopAttrib
glVertexPointer
glDisableClientState
glLoadIdentity
glEdgeFlag
glVertex2f
glColor4ub
glVertex2d
glGetFloatv
glOrtho
glDrawElements
glPushAttrib
wglCreateContext
glGenLists
wglGetCurrentDC
wglGetCurrentContext
wglUseFontBitmapsW
wglDeleteContext
glColor3f
glPolygonOffset
glDepthRange
glPixelStorei
glPopMatrix
glColorPointer
glTexImage2D
glTexCoordPointer
glDeleteTextures
glTexParameteri
glScissor
glGenTextures
glBindTexture
glPolygonMode
glGetIntegerv
kernel32
GetCommandLineW
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
GetFileSizeEx
GetConsoleOutputCP
WriteFile
FlushFileBuffers
ReadConsoleW
GetConsoleMode
SetFilePointerEx
GetFileType
GetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
ReadFile
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
GetLastError
InterlockedFlushSList
RaiseException
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
GetTickCount64
GetTickCount
GetModuleHandleA
GetProcAddress
GetCommandLineA
DisableThreadLibraryCalls
CreateThread
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
QueryPerformanceFrequency
QueryPerformanceCounter
GetEnvironmentStringsW
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapCreate
VirtualProtect
HeapFree
GetCurrentProcess
Thread32Next
Thread32First
GetCurrentThreadId
SuspendThread
ResumeThread
CreateToolhelp32Snapshot
Sleep
HeapReAlloc
CloseHandle
HeapAlloc
HeapDestroy
GetThreadContext
GetCurrentProcessId
GetModuleHandleW
FlushInstructionCache
SetThreadContext
OpenThread
FreeLibraryAndExitThread
FreeConsole
GetConsoleWindow
SetLastError
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetStringTypeW
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
GetProcessHeap
SetStdHandle
CreateFileW
HeapSize
WriteConsoleW
SetEndOfFile
VirtualFree
InitOnceComplete
InitOnceBeginInitialize
WideCharToMultiByte
WaitForSingleObjectEx
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
LCMapStringEx
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
user32
FindWindowA
GetForegroundWindow
GetAsyncKeyState
GetClientRect
GetCursorPos
PostMessageW
GetWindowTextA
SetClipboardData
GetClipboardData
EmptyClipboard
CloseClipboard
OpenClipboard
SetCursorPos
ReleaseCapture
SetCursor
SetCapture
LoadCursorW
IsChild
ClientToScreen
GetCapture
ScreenToClient
GetKeyState
ShowWindow
SetWindowLongPtrA
CallWindowProcA
SetWindowLongPtrW
GetDC
GetWindowRect
gdi32
SelectObject
DeleteObject
ChoosePixelFormat
CreateFontA
SetPixelFormat
ws2_32
WSASend
WSARecv
imm32
ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow
xinput1_4
ord4
ord2
Sections
.text Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 617KB - Virtual size: 616KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 23KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 57KB - Virtual size: 57KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 252B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 248B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ