Extended Key Usages
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Overview
overview
10Static
static
3Discord Ni...or.exe
windows7-x64
Discord Ni...or.exe
windows10-2004-x64
10GFSDK_Shad...64.dll
windows7-x64
1GFSDK_Shad...64.dll
windows10-2004-x64
1Scrafy.dll
windows7-x64
1Scrafy.dll
windows10-2004-x64
1d3dcsx_46.dll
windows7-x64
1d3dcsx_46.dll
windows10-2004-x64
1keys.dll
windows7-x64
3keys.dll
windows10-2004-x64
3swds.dll
windows7-x64
3swds.dll
windows10-2004-x64
3Static task
static1
Behavioral task
behavioral1
Sample
Discord Nitro Generator.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
Discord Nitro Generator.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
GFSDK_ShadowLib.win64.dll
Resource
win7-20241010-en
Behavioral task
behavioral4
Sample
GFSDK_ShadowLib.win64.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
Scrafy.dll
Resource
win7-20240903-en
Behavioral task
behavioral6
Sample
Scrafy.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral7
Sample
d3dcsx_46.dll
Resource
win7-20241010-en
Behavioral task
behavioral8
Sample
d3dcsx_46.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral9
Sample
keys.dll
Resource
win7-20240903-en
Behavioral task
behavioral10
Sample
keys.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral11
Sample
swds.dll
Resource
win7-20241010-en
Behavioral task
behavioral12
Sample
swds.dll
Resource
win10v2004-20241007-en
Target
740930ecdbe028af8957cfed4382d12af784acc38887807031f2406d9ff914eb
Size
2.6MB
MD5
2be8c5b91bcaa949241fb96430c7c205
SHA1
aceca59c16dfa3ca36d4e6aa43cc79c8e00fe486
SHA256
740930ecdbe028af8957cfed4382d12af784acc38887807031f2406d9ff914eb
SHA512
22a45be3cfc4c282d6f3e61f861300d5ec149057215bfcd3228298fbed9b19ec0220b389eee63edd4d95abcc0e7abd668761a780589d15c0b1fa87ace50fc5db
SSDEEP
49152:O2SmwPH4Ui4lc94bfCOacfw2vEuvSS+o/yXkBFBbJjPBwfENhYW+bHGq:VDP4lc9QKpcY2cin+myXkxFz0akbHGq
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/GFSDK_ShadowLib.win64.dll |
| unpack001/keys.dll |
| unpack001/swds.dll |
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GetProcAddress
GetModuleHandleA
LoadLibraryA
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
D3DXMatrixMultiply
D3DXMatrixLookAtLH
D3DXMatrixPerspectiveOffCenterLH
D3DXMatrixOrthoOffCenterLH
D3DXVec3TransformCoord
D3DXMatrixInverse
D3DXVec4Transform
GetCPInfo
CreateFileW
RtlLookupFunctionEntry
RtlUnwindEx
RaiseException
RtlPcToFileHeader
DecodePointer
EncodePointer
GetCurrentThreadId
FlsSetValue
GetCommandLineA
GetLastError
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
CloseHandle
EnterCriticalSection
LeaveCriticalSection
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
FlsGetValue
FlsFree
SetLastError
FlsAlloc
WriteFile
GetModuleFileNameW
GetACP
GetOEMCP
IsValidCodePage
Sleep
GetProcAddress
GetModuleHandleW
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
GetVersion
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
LoadLibraryW
LCMapStringW
MultiByteToWideChar
GetStringTypeW
HeapReAlloc
WriteConsoleW
?NV_ShadowLib_AddBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAUNV_ShadowLib_BufferDesc@@PEAPEAI@Z
?NV_ShadowLib_AddMap@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAUNV_ShadowLib_MapDesc@@PEAPEAI@Z
?NV_ShadowLib_ClearBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAI@Z
?NV_ShadowLib_CloseDX@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@@Z
?NV_ShadowLib_CopyBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11RenderTargetView@@W4NV_ShadowLib_Channel@@@Z
?NV_ShadowLib_DevModeClearMapRegion@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAUID3D11RenderTargetView@@Ugfsdk_float2@@2@Z
?NV_ShadowLib_DevModeDisplayBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11RenderTargetView@@Ugfsdk_float2@@@Z
?NV_ShadowLib_DevModeDisplayExternalMap@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11RenderTargetView@@PEAUNV_ShadowLib_ExternalMapDesc@@PEAUID3D11ShaderResourceView@@IIIM@Z
?NV_ShadowLib_DevModeDisplayExternalMapFrustum@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11RenderTargetView@@PEAUNV_ShadowLib_ExternalMapDesc@@IUgfsdk_float3@@@Z
?NV_ShadowLib_DevModeDisplayMap@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11RenderTargetView@@1IIIM@Z
?NV_ShadowLib_DevModeDisplayMapFrustum@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11RenderTargetView@@1IUgfsdk_float3@@@Z
?NV_ShadowLib_DevModeGetMapData@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAPEAUID3D11ShaderResourceView@@PEAUgfsdk_float4x4@@3@Z
?NV_ShadowLib_DevModeToggleDebugCascadeShader@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAI_N@Z
?NV_ShadowLib_DevModeToggleDebugEyeDepthShader@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAI_N@Z
?NV_ShadowLib_DevModeToggleDebugEyeViewZShader@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAI_N@Z
?NV_ShadowLib_FinalizeBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAPEAUID3D11ShaderResourceView@@@Z
?NV_ShadowLib_GetVersion@@YA?AW4NV_ShadowLib_Status@@PEAUNV_ShadowLib_Version@@@Z
?NV_ShadowLib_ModulateBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11RenderTargetView@@Ugfsdk_float3@@@Z
?NV_ShadowLib_OpenDX@@YA?AW4NV_ShadowLib_Status@@PEAUNV_ShadowLib_Version@@QEIAUNV_ShadowLib_Ctx@@QEIAUID3D11Device@@QEIAUID3D11DeviceContext@@PEAUgfsdk_new_delete_t@@@Z
?NV_ShadowLib_RemoveBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAPEAI@Z
?NV_ShadowLib_RemoveMap@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAPEAI@Z
?NV_ShadowLib_RenderBuffer@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAI1PEAUNV_ShadowLib_BufferRenderParams@@@Z
?NV_ShadowLib_RenderBufferUsingExternalMap@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAUNV_ShadowLib_ExternalMapDesc@@PEAUID3D11ShaderResourceView@@PEAIPEAUNV_ShadowLib_BufferRenderParams@@@Z
?NV_ShadowLib_RenderMap@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUNV_ShadowLib_MapRenderParams@@@Z
?NV_ShadowLib_SetStereoFixUpResource@@YA?AW4NV_ShadowLib_Status@@QEIAUNV_ShadowLib_Ctx@@PEAIPEAUID3D11ShaderResourceView@@@Z
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
d3dcsx_46.pdb
free
??0exception@@QEAA@AEBQEBDH@Z
malloc
_callnewh
_CxxThrowException
memcpy
_XcptFilter
_amsg_exit
_initterm
__C_specific_handler
memset
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
_lock
_unlock
__dllonexit
_onexit
isleadbyte
_fileno
_snprintf
_itoa
wctomb
__badioinfo
__pioinfo
_isatty
_write
_lseeki64
_iob
_vscprintf
_purecall
??0exception@@QEAA@XZ
??0exception@@QEAA@AEBQEBD@Z
??1exception@@UEAA@XZ
?what@exception@@UEBAPEBDXZ
??0exception@@QEAA@AEBV0@@Z
__CxxFrameHandler
_errno
_strtoui64
_vsnprintf
memmove
ceil
log
memcmp
GetLastError
LoadLibraryExW
FreeLibrary
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
OutputDebugStringA
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
DeleteCriticalSection
InitializeCriticalSection
QueryPerformanceCounter
QueryPerformanceFrequency
LeaveCriticalSection
EnterCriticalSection
VirtualProtect
Sleep
DisableThreadLibraryCalls
GetProcAddress
D3DX11CreateFFT
D3DX11CreateFFT1DComplex
D3DX11CreateFFT1DReal
D3DX11CreateFFT2DComplex
D3DX11CreateFFT2DReal
D3DX11CreateFFT3DComplex
D3DX11CreateFFT3DReal
D3DX11CreateScan
D3DX11CreateSegmentedScan
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
C:\BuildAgent\work\1ac10ebb5efde38f\rehlds\filesystem\FileSystem_Stdio\build\binaries\filesystemSharedLibrary\filesystem_stdio.pdb
GetCurrentDirectoryA
OutputDebugStringA
FindFirstFileA
FindNextFileA
FindClose
GetProcAddress
FreeLibrary
CloseHandle
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
RaiseException
InterlockedFlushSList
SetLastError
RtlUnwind
ReadFile
CreateFileW
GetDriveTypeW
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
ExitProcess
GetModuleHandleExW
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
CreateDirectoryW
GetACP
DeleteFileW
GetStdHandle
HeapReAlloc
SetFilePointerEx
GetConsoleMode
ReadConsoleW
WriteFile
GetConsoleCP
FlushFileBuffers
GetCurrentDirectoryW
GetFullPathNameW
CompareStringW
LCMapStringW
SetStdHandle
FindFirstFileExA
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetProcessHeap
GetStringTypeW
GetTimeZoneInformation
WriteConsoleW
HeapSize
SetEndOfFile
EncodePointer
DecodePointer
CreateInterface
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
C:\BuildAgent\work\1ac10ebb5efde38f\rehlds\build\binaries\rehlds_swds_engineSharedLibrary\releaseRehldsFixes\swds.pdb
SteamAPI_UnregisterCallback
SteamAPI_RunCallbacks
SteamGameServer_RunCallbacks
SteamGameServer_Init
SteamApps
SteamAPI_UnregisterCallResult
SteamAPI_RegisterCallback
SteamAPI_UseBreakpadCrashHandler
SteamAPI_SetBreakpadAppID
SteamAPI_Init
SteamAPI_Shutdown
SteamGameServer_Shutdown
SteamGameServer
GetModuleInformation
inet_addr
WSAGetLastError
ioctlsocket
gethostname
gethostbyname
select
bind
sendto
recvfrom
closesocket
socket
ntohs
htons
htonl
ntohl
getsockname
GetEnvironmentStringsW
GetCommandLineW
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
GetProcessHeap
MoveFileExW
FlushFileBuffers
WriteConsoleW
SetFilePointerEx
ReadConsoleW
ReadFile
SetEndOfFile
SetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
DeleteFileW
GetStdHandle
GetACP
GetModuleFileNameA
InitializeCriticalSection
VirtualProtect
Sleep
FreeEnvironmentStringsW
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
LoadLibraryA
GetLastError
FreeLibrary
VirtualFree
VirtualAlloc
VirtualQuery
GetModuleHandleA
GetVersionExA
DeleteCriticalSection
GlobalMemoryStatus
GlobalAlloc
GlobalFree
GetCommandLineA
GetTickCount
TerminateProcess
GetCurrentProcess
QueryPerformanceCounter
QueryPerformanceFrequency
GetLocalTime
GetSystemTime
GetTimeZoneInformation
GetProcessTimes
GetSystemTimeAsFileTime
CreateThread
TerminateThread
HeapFree
HeapReAlloc
HeapAlloc
GetConsoleMode
SetEnvironmentVariableA
HeapSize
OutputDebugStringA
WideCharToMultiByte
EncodePointer
DecodePointer
MultiByteToWideChar
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
CloseHandle
SetEvent
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
RaiseException
RtlUnwind
LoadLibraryExW
InterlockedFlushSList
ExitProcess
GetModuleHandleExW
CreateFileW
GetFileType
WriteFile
GetConsoleCP
MessageBoxA
GetForegroundWindow
wsprintfA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
CreateInterface
F
NET_Sleep_Timeout
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ