D:\a\iw4x-sp\iw4x-sp\build\bin\Win32\Release\iw4x-sp.pdb
Static task
static1
1 signatures
General
-
Target
iw4x-sp.exe
-
Size
1.4MB
-
MD5
97a7c7b6640c82f660127d3aa74ee377
-
SHA1
cb9caa74eb67320e9f3f1619e10f0f68398e7786
-
SHA256
e607d0aac802b5dec8555718153edd8fe74da07bd9b3d9f6bfb4c392ac038682
-
SHA512
46128ca805a4fbf15ee36e1e5ceafb7b56c88c87dbce244f592218f68dc8b5f21407df66fc53b082ee9fc1a93ba5b36713bd73fbe8c0492cc227068dc8827acf
-
SSDEEP
12288:ZTSph0lhSMXlVxJUb/ugJFAlVyZA97qLH6XvOFl7C5WRJGgUEFpBYJgo+/XZ2v49:F4h0lhSMXlF8F+7qrY5WRcQBxfhDBv
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource iw4x-sp.exe
Files
-
iw4x-sp.exe.exe windows:6 windows x86 arch:x86
98439d46c4f263d889c707d59655f7eb
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
CreateFileA
CloseHandle
TerminateProcess
SetCurrentDirectoryA
SetDllDirectoryA
AddVectoredExceptionHandler
SetProcessDEPPolicy
GetTickCount
CreateDirectoryA
GetProcAddress
GetCurrentDirectoryA
GetLastError
VirtualAlloc
VirtualFree
CopyFileA
IsDebuggerPresent
GetCurrentProcessId
GetConsoleWindow
GetCurrentThreadId
OutputDebugStringA
SetThreadContext
GetThreadContext
HeapDestroy
HeapCreate
ReadFile
WriteFile
PeekNamedPipe
CreateFileW
WaitNamedPipeW
lstrlenW
GetModuleFileNameW
MultiByteToWideChar
VirtualQuery
GetCommandLineW
GetSystemFirmwareTable
GetModuleFileNameA
SizeofResource
FindResourceA
GetModuleHandleA
GetModuleHandleExA
LoadLibraryA
LockResource
LoadResource
FreeLibrary
CreateProcessA
Thread32Next
Thread32First
SuspendThread
ResumeThread
CreateToolhelp32Snapshot
OpenThread
GetTempPathA
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
WideCharToMultiByte
FormatMessageA
GetLocaleInfoEx
GetCurrentDirectoryW
CreateDirectoryW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
AreFileApisANSI
GetModuleHandleW
GetFileInformationByHandleEx
GetVolumeInformationA
QueryPerformanceCounter
QueryPerformanceFrequency
WaitForSingleObjectEx
Sleep
GetExitCodeThread
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
GetSystemTimeAsFileTime
LCMapStringEx
GetStringTypeW
GetCPInfo
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
InitializeSListHead
RtlUnwind
RaiseException
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetStdHandle
HeapFree
HeapAlloc
GetFileType
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileSizeEx
SetFilePointerEx
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
HeapReAlloc
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetProcessHeap
SetStdHandle
HeapSize
WriteConsoleW
SetEndOfFile
LocalFree
GetCurrentProcess
FlushInstructionCache
VirtualProtect
user32
GetWindowThreadProcessId
ShowWindow
MessageBoxA
advapi32
CryptAcquireContextW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
GetCurrentHwProfileA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
crypt32
CryptProtectData
ws2_32
htons
dbghelp
MiniDumpWriteDump
shell32
CommandLineToArgvW
Exports
Exports
AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
SteamAPI_Init
SteamAPI_RegisterCallResult
SteamAPI_RegisterCallback
SteamAPI_RestartAppIfNecessary
SteamAPI_RunCallbacks
SteamAPI_Shutdown
SteamAPI_UnregisterCallResult
SteamAPI_UnregisterCallback
SteamApps
SteamFriends
SteamGameServer
SteamGameServer_Init
SteamGameServer_RunCallbacks
SteamGameServer_Shutdown
SteamMasterServerUpdater
SteamMatchmaking
SteamMatchmakingServers
SteamNetworking
SteamRemoteStorage
SteamUser
SteamUserStats
SteamUtils
Sections
.payload Size: - Virtual size: 160.0MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.cld Size: 86KB - Virtual size: 12.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.clr Size: 320KB - Virtual size: 320KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.main Size: 384KB - Virtual size: 383KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 602KB - Virtual size: 601KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ