c:\mw\Speed\Pc\Src\Online\LANServer\Release\LANServer.pdb
Static task
static1
1 signatures
General
-
Target
server.dll
-
Size
372KB
-
MD5
0519da1209d7e0ef2191b25e18595d8d
-
SHA1
28b8866fc1f24bc54ef10838b8eb624e2cda5f28
-
SHA256
c4fdd0e9e779be7f4be7728b03339eda4fd27248ceb9d2c640403b8fc90587ff
-
SHA512
690b344844b4df8cbea1a74d9cf687cbf9d8f7c3ed709e397a5fe32c0617b1db8d9de4556eaa3f72a21d93b98c654ac9b0d0b476d80f6ac622e80dde9323874b
-
SSDEEP
6144:CqThAslSzeEqGJB/StKYr4K/uUknNAsbiKkX6FLLVDGGTNeiX2:C67IerGjKto3UknNnnw6ZZDGG
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource server.dll
Files
-
server.dll.dll windows:4 windows x86 arch:x86
6f57f5c960299946b3087c23b9624819
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
ws2_32
__WSAFDIsSet
htonl
htons
ntohl
ntohs
getsockopt
WSACleanup
WSAIoctl
gethostname
gethostbyname
getsockname
select
recvfrom
recv
send
sendto
accept
listen
connect
bind
WSASetEvent
shutdown
closesocket
WSAStartup
WSAGetOverlappedResult
WSAWaitForMultipleEvents
WSAResetEvent
WSARecvFrom
WSARecv
WSACloseEvent
socket
ioctlsocket
setsockopt
WSACreateEvent
WSAGetLastError
kernel32
GetCurrentDirectoryA
GetFullPathNameA
FindFirstFileA
GetDriveTypeA
FindClose
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
HeapSize
SetStdHandle
GetStringTypeW
GetStringTypeA
GetSystemInfo
VirtualProtect
GetLocaleInfoA
LoadLibraryA
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
VirtualQuery
SetFilePointer
FlushFileBuffers
IsBadWritePtr
VirtualAlloc
LCMapStringW
TerminateThread
GetExitCodeThread
ExitThread
Sleep
GetTickCount
CloseHandle
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
CreateFileA
GetModuleFileNameA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedDecrement
InterlockedIncrement
CreateThread
SetThreadPriority
CreateEventA
InterlockedExchange
GetModuleHandleA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
GetCurrentThreadId
LeaveCriticalSection
GetLastError
ReadFile
WriteFile
MultiByteToWideChar
LCMapStringA
GetTimeZoneInformation
UnhandledExceptionFilter
VirtualFree
HeapCreate
HeapDestroy
SetUnhandledExceptionFilter
GetCurrentProcessId
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCurrentProcess
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
RaiseException
GetCommandLineA
GetVersionExA
HeapReAlloc
MoveFileA
DeleteFileA
GetProcAddress
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
QueryPerformanceCounter
TerminateProcess
netapi32
Netbios
Exports
Exports
IsServerRunning
StartServer
StopServer
Sections
.text Size: 304KB - Virtual size: 303KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 40KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 77KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 16KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ