64912493c5fdb565471b3e2f2f6d7a537317e01cd870e9e68f3cd40588106557

Sharing

Copy URL Twitter E-mail

General

Target

64912493c5fdb565471b3e2f2f6d7a537317e01cd870e9e68f3cd40588106557
Size

218KB
MD5

2289cba35c2986efec09601912eb0eb0
SHA1

98e7ba02f6e7d221b928970bee619b869a608d35
SHA256

64912493c5fdb565471b3e2f2f6d7a537317e01cd870e9e68f3cd40588106557
SHA512

6af5a6241e22a9f3c78ab654a73f4aec39ec727104012415ebd45be11bd06f157649fd109d5ac9e04af6de2e02dd689247e57dfa6ebd2930d3dad015c551f3d3
SSDEEP

3072:QXoacmratcFM0O4lrpAwAjEd6wKqzkzEC7BRjqet0Belnv/9I9u:QXoacmratPertCPqet0anv

Score

N/A

Malware Config

Signatures

Files

64912493c5fdb565471b3e2f2f6d7a537317e01cd870e9e68f3cd40588106557
.dll windows x86

61f123aa1b36fa6343954d72b423b584

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gstreamer

gst_element_get_type
_gst_element_error_printf
gst_caps_append_structure
gst_caps_intersect
g_type_check_class_cast
gst_caps_copy
gst_caps_unref
g_type_check_instance_cast
gst_structure_has_field
gst_element_register
g_str_equal
gst_element_class_add_pad_template
gst_element_message_full
gst_value_compare
gst_structure_remove_field
g_type_register_static
gst_caps_do_simplify
gst_base_transform_set_qos_enabled
gst_structure_set_name
gst_pad_template_new
gst_structure_copy
gst_element_class_set_details_simple
g_type_class_peek_parent
gst_base_transform_get_type
gst_core_error_quark
gst_structure_get_name
gst_caps_get_size
gst_structure_get_value
gst_caps_new_empty
gst_value_get_fraction_denominator
gst_structure_get_boolean
gst_int_range_get_type
gst_buffer_get_type
gst_structure_get_fourcc
gst_buffer_new_and_alloc
gst_value_get_fraction_numerator
gst_mini_object_unref
gst_fraction_get_type
g_type_check_value_holds
gst_fraction_range_get_type
gst_structure_has_name
gst_caps_append
gst_caps_new_simple
gst_value_get_mini_object
gst_caps_set_simple
gst_fourcc_get_type
gst_structure_set_valist
gst_caps_get_structure
gst_structure_get_int

kernel32

HeapDestroy
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
HeapSize
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryA
RtlUnwind
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
GetStdHandle
GetLastError
HeapFree
HeapAlloc
HeapReAlloc
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile

Exports

Exports

gst_plugin_desc

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

61f123aa1b36fa6343954d72b423b584

Headers

DLL Characteristics

File Characteristics

Imports

gstreamer

kernel32

Exports

Exports

Sections

.text Size: 138KB - Virtual size: 138KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 7KB - Virtual size: 13KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 7KB - Virtual size: 7KB

.rmnet Size: 54KB - Virtual size: 56KB

.text
Size: 138KB - Virtual size: 138KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 7KB - Virtual size: 13KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 7KB - Virtual size: 7KB

.rmnet
Size: 54KB - Virtual size: 56KB