file[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

1.1MB
MD5

9b2be86d480c57dba42264bd6a713bb1
SHA1

5815596d257b904820ad838d07cd8093458e5ce9
SHA256

09b72e85709036c154c3a11ab02a1cc33a38234631936ccaade107888b4f6361
SHA512

626cafb2c848ad95dee3604d1271428bbf415e3ce176378a5a6516615a2e72d4a9a83234e6a0a876119c994420ff84a43934bc29b53b5df8ac02a368dec63b64
SSDEEP

12288:ES1NQtCYz3YqMO9hXEszS5c1ctU8r2F8mteRO4FwzfOFa57sDX7hJLs:PQtdzoqMO9lEssc+y8SF8mtekmE7sB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
file.exe

Files

file.exe
.dll windows:6 windows x64 arch:x64

a7b7026ed4a2a199dfc6b238129689f9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\ttv\buildslave\workspace\release\build\twitchsdk\lib\x64\ReleaseBindings\twitchsdk.pdb

Imports

libmp3lame-ttv

lame_close
lame_encode_flush
lame_encode_buffer_interleaved
lame_init_params
lame_set_mode
lame_init
lame_set_brate
lame_set_num_channels
lame_set_out_samplerate
lame_set_in_samplerate

swresample-ttv-0

ord89
ord95
ord90
ord92

opengl32

glBindTexture
glGetIntegerv
glGetError
glGetTexImage
glReadPixels
glGetTexLevelParameteriv

kernel32

WriteConsoleW
CreateFileW
SetEndOfFile
SetEnvironmentVariableA
SetStdHandle
ReadConsoleW
LoadLibraryW
InitializeCriticalSectionAndSpinCount
FreeLibrary
Sleep
OutputDebugStringA
QueryPerformanceFrequency
QueryPerformanceCounter
CreateEventW
WaitForSingleObject
SetEvent
CloseHandle
GetProcAddress
RaiseException
MultiByteToWideChar
ReleaseMutex
CreateMutexW
SwitchToThread
SetErrorMode
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
GetStringTypeW
GetLastError
HeapFree
IsDebuggerPresent
IsProcessorFeaturePresent
GetCurrentProcess
GetCurrentThread
GetVersionExW
GetCommandLineA
GetCurrentThreadId
GetSystemTimeAsFileTime
CreateThread
ExitThread
LoadLibraryExW
HeapAlloc
HeapReAlloc
RtlLookupFunctionEntry
RtlUnwindEx
RtlPcToFileHeader
OutputDebugStringW
GetThreadTimes
GetModuleFileNameW
TlsGetValue
GetCPInfo
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
TerminateProcess
TlsAlloc
TlsSetValue
TlsFree
GetStartupInfoW
SetFilePointerEx
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
AreFileApisANSI
HeapSize
IsValidCodePage
GetACP
GetOEMCP
ReadFile
SetFilePointer
GetConsoleCP
GetConsoleMode
GetProcessHeap
InitializeSListHead
GetFileType
GetModuleFileNameA
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
FlushFileBuffers
GetModuleHandleW

advapi32

RegOpenKeyExW
RegCloseKey
RegEnumKeyExW
RegQueryValueExW

ole32

CoInitialize
CoUninitialize
CoTaskMemFree
CoCreateInstance
CoInitializeEx

oleaut32

VariantClear
VariantInit

ws2_32

closesocket
send
connect
socket
getaddrinfo
WSACleanup
WSAGetLastError
WSAStartup
recv
ioctlsocket

wininet

InternetOpenW
InternetSetOptionW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
HttpQueryInfoW
InternetReadFile
InternetCloseHandle

Exports

Exports

ChatAPI_SetDownloaderCachePaths
ChatAPI_SetTestFailureCallback
ChatAPI_SetTestFinishedCallback
ChatAPI_UseTestTransport
ConvertImageFormat
Java_tv_twitch_StandardCoreAPI_TTV_1Java_1ErrorToString
Java_tv_twitch_StandardCoreAPI_TTV_1Java_1Init
Java_tv_twitch_StandardCoreAPI_TTV_1Java_1SetTraceLevel
Java_tv_twitch_StandardCoreAPI_TTV_1Java_1SetTraceOutput
Java_tv_twitch_StandardCoreAPI_TTV_1Java_1Shutdown
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1GetMaxResolution
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1AllocateFrameBuffer
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1CaptureFrameBuffer_1ReadPixels
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1FreeFrameBuffer
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetArchivingState
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetDefaultParams
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetGameNameList
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetIngestServers
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetStatCallbacks
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetStreamCallbacks
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetStreamInfo
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetStreamTime
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetUserInfo
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1GetVolume
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1Login
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1MemsetFrameBuffer
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1PauseVideo
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1PollStats
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1PollTasks
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1RandomizeFrameBuffer
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1RequestAuthToken
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1RunCommercial
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SendActionMetaData
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SendEndSpanMetaData
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SendStartSpanMetaData
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SetStatCallbacks
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SetStreamCallbacks
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SetStreamInfo
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SetVolume
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1Start
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1Stop
Java_tv_twitch_broadcast_DesktopStreamAPI_TTV_1Java_1SubmitVideoFrame
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1Connect
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1ConnectAnonymous
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1Disconnect
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1DownloadEmoticonData
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1FlushEvents
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1GetChannelUsers
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1GetEmoticonData
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1Init
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1SendMessage
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1Chat_1Shutdown
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1GetChatCallbacks
Java_tv_twitch_chat_StandardChatAPI_TTV_1Java_1SetChatCallbacks
TTV_AllocateFrameBuffer
TTV_Binding_GetArchivingState
TTV_Binding_GetGameNameList
TTV_Binding_GetIngestServers
TTV_Binding_GetStreamInfo
TTV_Binding_GetUserInfo
TTV_Binding_Login
TTV_Binding_RequestAuthToken
TTV_Chat_Connect
TTV_Chat_ConnectAnonymous
TTV_Chat_Disconnect
TTV_Chat_DownloadEmoticonData
TTV_Chat_FlushEvents
TTV_Chat_FreeEmoticonData
TTV_Chat_FreeTokenizedMessageList
TTV_Chat_FreeUserList
TTV_Chat_GetChannelUsers
TTV_Chat_GetEmoticonData
TTV_Chat_Init
TTV_Chat_SendMessage
TTV_Chat_Shutdown
TTV_ErrorToString
TTV_FreeFrameBuffer
TTV_FreeGameLiveStreamList
TTV_FreeGameNameList
TTV_FreeIngestList
TTV_GetArchivingState
TTV_GetDefaultParams
TTV_GetGameLiveStreams
TTV_GetGameNameList
TTV_GetIngestServers
TTV_GetMaxResolution
TTV_GetStreamInfo
TTV_GetStreamTime
TTV_GetUserInfo
TTV_GetVolume
TTV_Init
TTV_Login
TTV_PauseVideo
TTV_PollStats
TTV_PollTasks
TTV_RandomizeFrameBuffer
TTV_RegisterStatsCallback
TTV_RemoveStatsCallback
TTV_RequestAuthToken
TTV_RunCommercial
TTV_SendActionMetaData
TTV_SendEndSpanMetaData
TTV_SendStartSpanMetaData
TTV_SetAssertHandler
TTV_SetOutputFileName
TTV_SetStreamInfo
TTV_SetTraceChannelLevel
TTV_SetTraceLevel
TTV_SetTraceOutput
TTV_SetVolume
TTV_Shutdown
TTV_Start
TTV_Stop
TTV_SubmitVideoFrame
TTV_Unity_GetCapturePixelFormat
TTV_Unity_Start
TTV_Unity_Stop
TTV_Unity_SubmitTexture
TTV_WebCam_FlushEvents
TTV_WebCam_GetFrame
TTV_WebCam_Init
TTV_WebCam_IsFrameAvailable
TTV_WebCam_Shutdown
TTV_WebCam_Start
TTV_WebCam_Stop
TTV_XNA_Init
TTV_XNA_SetGraphicsDevice
TTV_XNA_Shutdown
TTV_XNA_Start
TTV_XNA_Stop
TTV_XNA_SubmitRenderTarget
TestVideoCaptureSystem_PluginDevice
TestVideoCaptureSystem_UnplugDevice
UnitySetGraphicsDevice
WebcamAPI_SetPreferredCaptureSystem
WebcamAPI_SetTestSystemParameters

Sections

.text
Size: 709KB - Virtual size: 708KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7b7026ed4a2a199dfc6b238129689f9

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libmp3lame-ttv

swresample-ttv-0

opengl32

kernel32

advapi32

ole32

oleaut32

ws2_32

wininet

Exports

Exports

Sections

.text Size: 709KB - Virtual size: 708KB

.rdata Size: 280KB - Virtual size: 280KB

.data Size: 51KB - Virtual size: 131KB

.pdata Size: 39KB - Virtual size: 39KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 19KB - Virtual size: 19KB

.text
Size: 709KB - Virtual size: 708KB

.rdata
Size: 280KB - Virtual size: 280KB

.data
Size: 51KB - Virtual size: 131KB

.pdata
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 19KB - Virtual size: 19KB