Cinebench[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Cinebench.exe
Size

7.6MB
MD5

c2acb28fb8ecb9d0404768438cb0e631
SHA1

848b115e3df9d9301f235c123bdd209e7085538e
SHA256

b64face29ff36f7ee88fc1283ea21b2ad98f9043c443a75e4ec9ef05ceae81de
SHA512

f60b6813370a948830c8b5268670e1c3fb64fb8d2e2e0cecf1db27e6108c0edfce13e59aeee4446e036aeb2df80bc8b9e8e1830a8f3e7b41d5936813f8215a4a
SSDEEP

196608:wxh9j04Tz1f6n0NFC/7Oq/jv+MrO7iYAaWNXJ3nGd/GKiw8rawwF0OO17FVuM9qj:wxh64Tz1f6n0NFC/7Oq/jv+M67iYAaW0

Score

1^/10

Malware Config

Signatures

Files

Cinebench.exe
.exe windows:6 windows x64 arch:x64

08e74c7d9b9cf8e22c15532a32e1e179

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:9f:b7:dc:b6:42:7d:8c:bc:a6:41:42:dc:93:ca:1c
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

01/06/2021, 00:00

Not After

13/08/2024, 23:59

Subject

CN=Maxon Computer GmbH,OU=SOFTWARE DEVELOPMENT,O=Maxon Computer GmbH,L=Friedrichsdorf,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:9f:b7:dc:b6:42:7d:8c:bc:a6:41:42:dc:93:ca:1c
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

01/06/2021, 00:00

Not After

13/08/2024, 23:59

Subject

CN=Maxon Computer GmbH,OU=SOFTWARE DEVELOPMENT,O=Maxon Computer GmbH,L=Friedrichsdorf,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2a:0a:e8:40:b9:71:0e:aa:9d:61:0c:61:cb:63:2f:98:8a:a7:e3:c7:fe:1b:50:db:c1:06:83:ef:dc:f2:43:5e
Signer

Actual PE Digest

2a:0a:e8:40:b9:71:0e:aa:9d:61:0c:61:cb:63:2f:98:8a:a7:e3:c7:fe:1b:50:db:c1:06:83:ef:dc:f2:43:5e

Digest Algorithm

sha256

PE Digest Matches

true

66:b4:e9:56:31:a0:e5:05:d4:89:70:02:bb:1e:95:e7:1c:33:63:f7
Signer

Actual PE Digest

66:b4:e9:56:31:a0:e5:05:d4:89:70:02:bb:1e:95:e7:1c:33:63:f7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

application_opt.pdb

Imports

user32

CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageW
EnumDisplayDevicesW
EnumWindows
GetClassNameA
GetSystemMetrics
KillTimer
LoadCursorW
MsgWaitForMultipleObjectsEx
PeekMessageW
PostMessageW
PostThreadMessageW
RegisterClassA
RegisterWindowMessageA
SetTimer
TranslateMessage

kernel32

AddDllDirectory
AllocConsole
AttachConsole
CloseHandle
ConnectNamedPipe
CopyFileExW
CreateDirectoryW
CreateEventW
CreateFileW
CreateMutexA
CreateNamedPipeW
CreatePipe
CreateProcessW
CreateThread
CreateTimerQueue
CreateTimerQueueTimer
CreateToolhelp32Snapshot
DeleteCriticalSection
DeleteFileW
DeleteTimerQueue
DeleteTimerQueueTimer
DisconnectNamedPipe
DuplicateHandle
EnterCriticalSection
ExpandEnvironmentStringsW
FileTimeToSystemTime
FindClose
FindFirstFileW
FindNextFileW
FlsAlloc
FlsFree
FlsSetValue
FormatMessageW
FreeLibrary
GetActiveProcessorCount
GetCommandLineW
GetComputerNameExW
GetConsoleMode
GetConsoleScreenBufferInfo
GetConsoleTitleW
GetConsoleWindow
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetEnvironmentStringsW
GetExitCodeProcess
GetFileAttributesW
GetFileTime
GetFinalPathNameByHandleW
GetLastError
GetLogicalDriveStringsW
GetLogicalProcessorInformationEx
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNativeSystemInfo
GetProcAddress
GetProcessHeap
GetProcessId
GetProductInfo
GetStartupInfoW
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadContext
GetThreadId
GetThreadTimes
GetUserPreferredUILanguages
GetVolumeInformationW
GlobalMemoryStatusEx
HeapAlloc
HeapCreate
HeapFree
HeapReAlloc
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
IsDebuggerPresent
IsProcessorFeaturePresent
IsWow64Process
LeaveCriticalSection
LoadLibraryW
LocalAlloc
LocalFree
MoveFileExW
MultiByteToWideChar
OpenProcess
OpenThread
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
Process32FirstW
Process32NextW
QueryFullProcessImageNameW
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleA
ReadFile
RemoveDirectoryW
RemoveDllDirectory
ResetEvent
ResumeThread
RtlCaptureContext
RtlCaptureStackBackTrace
RtlLookupFunctionEntry
RtlVirtualUnwind
SetConsoleCP
SetConsoleCtrlHandler
SetConsoleMode
SetConsoleOutputCP
SetConsoleTitleW
SetDefaultDllDirectories
SetDllDirectoryW
SetEvent
SetFileAttributesW
SetFileTime
SetProcessPriorityBoost
SetThreadContext
SetThreadErrorMode
SetThreadGroupAffinity
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableCS
SuspendThread
SwitchToThread
TerminateProcess
Thread32First
Thread32Next
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualProtect
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteFile
lstrcmpA

gdi32

GetStockObject

advapi32

CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
GetUserNameW
RegCloseKey
RegCreateKeyExA
RegCreateKeyExW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegSetValueExA
RegSetValueExW

shell32

CommandLineToArgvW
SHGetDesktopFolder
SHGetDiskFreeSpaceExW
SHGetFolderPathA
SHGetFolderPathW
SHGetSpecialFolderLocation
ShellExecuteW

ole32

CoGetApartmentType
CoInitializeEx
CoTaskMemFree
CoUninitialize
OleInitialize
OleUninitialize

oleaut32

VariantClear
VariantTimeToSystemTime

imagehlp

ImageLoad
ImageUnload
SymCleanup
SymGetModuleInfo64
SymGetSymFromAddr64
SymInitialize
UnDecorateSymbolName

psapi

EnumProcessModules
GetModuleFileNameExW
GetProcessMemoryInfo

rpcrt4

RpcStringFreeA
UuidCreate
UuidFromStringA
UuidToStringA

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateStringReference

api-ms-win-core-winrt-l1-1-0

RoGetActivationFactory
RoInitialize
RoUninitialize

vcruntime140

__C_specific_handler
__CxxFrameHandler3
__current_exception
__current_exception_context
__std_terminate
memcmp
memcpy
memmove
memset
strchr
strrchr
strstr
wcsstr

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__p__commode
__stdio_common_vfprintf
__stdio_common_vsprintf
__stdio_common_vsscanf
__stdio_common_vswprintf
__stdio_common_vswprintf_s
_close
_fseeki64
_ftelli64
_getcwd
_set_fmode
_wfdopen
_wfopen
_wsopen_s
fclose
feof
fflush
fopen
fputc
fputs
fread
freopen
fseek
ftell
fwrite
setbuf
setvbuf

api-ms-win-crt-runtime-l1-1-0

_beginthread
_c_exit
_cexit
_clearfp
_configure_narrow_argv
_controlfp
_crt_atexit
_errno
_exit
_get_narrow_winmain_command_line
_initialize_narrow_environment
_initialize_onexit_table
_initterm
_initterm_e
_register_onexit_function
_register_thread_local_exe_atexit_callback
_seh_filter_exe
_set_app_type
exit
strerror
terminate

api-ms-win-crt-locale-l1-1-0

_configthreadlocale
_create_locale

api-ms-win-crt-math-l1-1-0

__setusermatherr
_dtest
_fdtest

api-ms-win-crt-time-l1-1-0

_gmtime64_s
_localtime64_s
_time64
_tzset
strftime

api-ms-win-crt-environment-l1-1-0

_putenv_s
_wgetenv

api-ms-win-crt-convert-l1-1-0

_strtod_l
atol
wcstombs

api-ms-win-crt-string-l1-1-0

_wcslwr
islower
isspace
strcat
strcmp
strcpy
strlen
strncat
strncmp
strncpy
strnlen
tolower
toupper
wcscat
wcscmp
wcscpy
wcslen
wcsncmp
wcsncpy

api-ms-win-crt-filesystem-l1-1-0

_wrename

api-ms-win-crt-heap-l1-1-0

_set_new_mode
calloc
free
malloc
realloc

api-ms-win-crt-utility-l1-1-0

_byteswap_uint64
_byteswap_ulong

Exports

Exports

MaxonDebugDumpThreadProfile
g_CpuYieldDelegate
g_maxon

Sections

.text
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 950KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 354KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gehcont
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 12B

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08e74c7d9b9cf8e22c15532a32e1e179

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

04:9f:b7:dc:b6:42:7d:8c:bc:a6:41:42:dc:93:ca:1cCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

04:9f:b7:dc:b6:42:7d:8c:bc:a6:41:42:dc:93:ca:1cCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

2a:0a:e8:40:b9:71:0e:aa:9d:61:0c:61:cb:63:2f:98:8a:a7:e3:c7:fe:1b:50:db:c1:06:83:ef:dc:f2:43:5eSigner

66:b4:e9:56:31:a0:e5:05:d4:89:70:02:bb:1e:95:e7:1c:33:63:f7Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

user32

kernel32

gdi32

advapi32

shell32

ole32

oleaut32

imagehlp

psapi

rpcrt4

api-ms-win-core-winrt-string-l1-1-0

api-ms-win-core-winrt-l1-1-0

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-utility-l1-1-0

Exports

Exports

Sections

.text Size: 4.8MB - Virtual size: 4.8MB

.rdata Size: 2.2MB - Virtual size: 2.2MB

.data Size: 15KB - Virtual size: 950KB

.pdata Size: 354KB - Virtual size: 354KB

.00cfg Size: 512B - Virtual size: 40B

.gehcont Size: 512B - Virtual size: 8B

.retplne Size: 512B - Virtual size: 12B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 178KB - Virtual size: 177KB

.reloc Size: 8KB - Virtual size: 8KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

04:9f:b7:dc:b6:42:7d:8c:bc:a6:41:42:dc:93:ca:1c
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

04:9f:b7:dc:b6:42:7d:8c:bc:a6:41:42:dc:93:ca:1c
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

2a:0a:e8:40:b9:71:0e:aa:9d:61:0c:61:cb:63:2f:98:8a:a7:e3:c7:fe:1b:50:db:c1:06:83:ef:dc:f2:43:5e
Signer

66:b4:e9:56:31:a0:e5:05:d4:89:70:02:bb:1e:95:e7:1c:33:63:f7
Signer

.text
Size: 4.8MB - Virtual size: 4.8MB

.rdata
Size: 2.2MB - Virtual size: 2.2MB

.data
Size: 15KB - Virtual size: 950KB

.pdata
Size: 354KB - Virtual size: 354KB

.00cfg
Size: 512B - Virtual size: 40B

.gehcont
Size: 512B - Virtual size: 8B

.retplne
Size: 512B - Virtual size: 12B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 178KB - Virtual size: 177KB

.reloc
Size: 8KB - Virtual size: 8KB