C:\Users\buildbox\Source\gitlab-runner\builds\DEZypWek\0\snxd\solid\host\Release\host.pdb
Static task
static1
1 signatures
General
-
Target
SWTOR_setup.exe
-
Size
3.1MB
-
MD5
5285e978e614ac7f6d96f862f4f5aac6
-
SHA1
0c0b8d50fb3c07f07455754505bda4d9d63aaf55
-
SHA256
fc63ed25bc9145769433d84c93c386c4adb26af17b90b7adae96052466a67f45
-
SHA512
09f9f285c62bcc989fad1459c03e3746caa7680578ce9d06a725c997e4fb015c33ca85c58d9c26743b712d276692f83e6b1bcb3f09fc0671a64fdf26b0f17f29
-
SSDEEP
49152:CnRu7vATeCqgbE7zU5Hk8XpTgqQieYoTABxqePIvtL8jaZpfwapYF:GT1tZk8XdOnePi7Zt/q
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SWTOR_setup.exe
Files
-
SWTOR_setup.exe.exe windows:6 windows x86 arch:x86
112007911b51fa48d37acc01b62cfd0b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
version
VerQueryValueA
GetFileVersionInfoExW
GetFileVersionInfoSizeExW
kernel32
ResetEvent
GetCurrentProcess
TerminateProcess
GetModuleHandleW
CompareStringW
GlobalAlloc
GlobalFree
GetLastError
DeleteFileW
SetEnvironmentVariableW
GetCommandLineW
QueryDosDeviceW
SetConsoleCtrlHandler
HeapFree
GetStdHandle
WriteFile
DeviceIoControl
InitializeProcThreadAttributeList
GetProcessId
GetEnvironmentVariableW
WaitForSingleObject
LocalAlloc
CreateFileW
GetSystemDirectoryW
GetModuleHandleA
OpenProcess
CreateToolhelp32Snapshot
MoveFileWithProgressW
UpdateProcThreadAttribute
Process32NextW
CreateFileA
Process32FirstW
CloseHandle
FreeConsole
LoadLibraryW
DeleteProcThreadAttributeList
HeapAlloc
GetWindowsDirectoryW
GetProcAddress
LocalFree
GetProcessHeap
GlobalMemoryStatusEx
CreateProcessW
SetThreadExecutionState
AllocConsole
SetConsoleTitleW
IsDebuggerPresent
GetExitCodeProcess
CreateDirectoryW
GetFileInformationByHandleEx
FindFirstFileW
FindNextFileW
GetDiskFreeSpaceW
RemoveDirectoryW
SetFileTime
GetModuleFileNameW
GetLocaleInfoEx
SetThreadPriority
SetEndOfFile
GetTempPathW
FindClose
GetFileAttributesW
GetCurrentThreadId
SetFileAttributesW
Sleep
GetFileAttributesExW
SetFileInformationByHandle
FileTimeToSystemTime
GetCurrentThread
GetNativeSystemInfo
RaiseException
GetCurrentDirectoryW
GetOverlappedResult
MoveFileExW
GetCurrentProcessId
SystemTimeToFileTime
FreeLibrary
CopyFileExW
VirtualQuery
GetQueuedCompletionStatus
PostQueuedCompletionStatus
CreateIoCompletionPort
ReadFile
SetFilePointerEx
MulDiv
GetTickCount64
IsProcessorFeaturePresent
CreateEventW
SetEvent
IsBadReadPtr
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
SetLastError
SetHandleInformation
CreateNamedPipeW
CreatePipe
PeekNamedPipe
DisconnectNamedPipe
WaitNamedPipeW
ConnectNamedPipe
FlushFileBuffers
ReleaseSemaphore
OpenSemaphoreW
CreateSemaphoreW
RtlCaptureContext
TerminateThread
CreateThread
VirtualQueryEx
SetUnhandledExceptionFilter
SetNamedPipeHandleState
WaitForMultipleObjects
TransactNamedPipe
GetSystemInfo
VirtualProtect
LoadLibraryExA
UnhandledExceptionFilter
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
RtlUnwind
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
EncodePointer
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
ExitProcess
GetModuleHandleExW
SetStdHandle
GetFileType
ExitThread
FreeLibraryAndExitThread
MultiByteToWideChar
WideCharToMultiByte
GetTimeZoneInformation
LCMapStringW
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStringTypeW
WriteConsoleW
GetFileSizeEx
HeapSize
HeapReAlloc
DecodePointer
FlushInstructionCache
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 290KB - Virtual size: 290KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 176KB - Virtual size: 175KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 78KB - Virtual size: 78KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ