1652d51b4654e72efb70dfd7c7131b03fba5ac72f444354833c3ce87d1af41a8

Sharing

Copy URL Twitter E-mail

General

Target

1652d51b4654e72efb70dfd7c7131b03fba5ac72f444354833c3ce87d1af41a8
Size

28KB
MD5

dc971a60c3ea841dfe884d812191e573
SHA1

579da653feecf6030404ded514a798d9c0c75aee
SHA256

1652d51b4654e72efb70dfd7c7131b03fba5ac72f444354833c3ce87d1af41a8
SHA512

a956f9c27f534097fba0ce25dbb81e3d703f19b758b03a5e1a2aa113733552ad59b7cb9ccbd29a2391019144fef37bb20d3019c51186729c3692bc7dc8cce6d5
SSDEEP

384:umh7Hu9DgXpzezxoa8AKSzljvcvSbRdfDjBhCUpu3/5fHF46I:h7HuOS9onAKSSqnDjBhCUpuP59RI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1652d51b4654e72efb70dfd7c7131b03fba5ac72f444354833c3ce87d1af41a8

Files

1652d51b4654e72efb70dfd7c7131b03fba5ac72f444354833c3ce87d1af41a8
.dll windows:6 windows x64 arch:x64

0df002649ed021f33c2d51377f7fb663

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\assemblage_aaai_code\Builds\7492317583825420312gnrxjlxxlm\BlackJackLib\assemblage_outdir_bin\BlackJackLib.pdb

Imports

playingcardslib

??1Deck@@QEAA@XZ
??1Player@@QEAA@XZ
??0Deck@@QEAA@AEBV0@@Z
??0Player@@QEAA@AEBV0@@Z
??0Player@@QEAA@$$QEAV0@@Z
??4Deck@@QEAAAEAV0@AEBV0@@Z
??4Player@@QEAAAEAV0@AEBV0@@Z
??4Deck@@QEAAAEAV0@$$QEAV0@@Z
??4Player@@QEAAAEAV0@$$QEAV0@@Z
?addLoss@Player@@QEAAXXZ
??1Card@@QEAA@XZ
??0Card@@QEAA@AEBU0@@Z
??0Card@@QEAA@$$QEAU0@@Z
??0Deck@@QEAA@XZ
?shuffle@Deck@@QEAAXXZ
?drawCard@Deck@@QEAA?AUCard@@XZ
??0Player@@QEAA@XZ
?addToHand@Player@@QEAAXUCard@@@Z
?getNoOfCards@Player@@QEBAIXZ
?getCard@Player@@QEBA?AUCard@@I@Z
?setNo@Player@@QEAAXI@Z
?addWin@Player@@QEAAXXZ
??0Deck@@QEAA@$$QEAV0@@Z

msvcp140

?good@ios_base@std@@QEBA_NXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?flags@ios_base@std@@QEBAHXZ
?width@ios_base@std@@QEBA_JXZ
?width@ios_base@std@@QEAA_J_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPEBD@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ

vcruntime140

__C_specific_handler
__std_exception_destroy
_CxxThrowException
__std_type_info_destroy_list
memset
__CxxFrameHandler3
__std_exception_copy

api-ms-win-crt-runtime-l1-1-0

_seh_filter_dll
_configure_narrow_argv
_invalid_parameter_noinfo_noreturn
_initterm
_cexit
_execute_onexit_table
_initialize_onexit_table
_initterm_e
_initialize_narrow_environment

api-ms-win-crt-heap-l1-1-0

malloc
free
_callnewh

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent

Exports

Exports

??0Blackjack@@QEAA@$$QEAV0@@Z
??0Blackjack@@QEAA@AEBV0@@Z
??0Blackjack@@QEAA@XZ
??1Blackjack@@QEAA@XZ
??4Blackjack@@QEAAAEAV0@$$QEAV0@@Z
??4Blackjack@@QEAAAEAV0@AEBV0@@Z
?__autoclassinit2@Blackjack@@QEAAX_K@Z
?deal@Blackjack@@AEAAXAEAVPlayer@@UCard@@@Z
?endRound@Blackjack@@QEAAXI@Z
?getHouseHand@Blackjack@@QEBA?AV?$vector@UCard@@V?$allocator@UCard@@@std@@@std@@XZ
?getPlayerHand@Blackjack@@QEBA?AV?$vector@UCard@@V?$allocator@UCard@@@std@@@std@@I@Z
?getScore@Blackjack@@QEBAII@Z
?getScore@Blackjack@@QEBAIXZ
?hit@Blackjack@@QEAAXI@Z
?printDealerHand@Blackjack@@QEBAXPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@_N@Z
?printHand@Blackjack@@QEBAXIPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@@Z
?startRound@Blackjack@@QEAAXI@Z

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0df002649ed021f33c2d51377f7fb663

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

playingcardslib

msvcp140

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

kernel32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 512B - Virtual size: 1KB

.pdata Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 60B

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 60B