9dfc52584ed6016d3d3a59baafa25e85d2cf48c16bf8836bef619b51152e5eaa

Sharing

Copy URL

Twitter E-mail

General

Target

9dfc52584ed6016d3d3a59baafa25e85d2cf48c16bf8836bef619b51152e5eaa
Size

73KB
MD5

7c5cd1f01a22a2d22511fd15c39ddd40
SHA1

db1acdab8af17e8d91163b2dc5e882b40e8098c4
SHA256

9dfc52584ed6016d3d3a59baafa25e85d2cf48c16bf8836bef619b51152e5eaa
SHA512

d09472dd5a1532acc8589883c5f4b2f3ae99f28f48d3e986352c5888585e434bfce71a4abc6bb0cb4e03662b6f0e1d03cd3dfc0f7eaa69143ac7b068c765600b
SSDEEP

1536:1RBMKvOgd0WR0OxSkCgUlKV/hVo2bwpOhDZ5JpMaBGbGk:1RBMKvOgd5xSiUlK7x0uDxpMaoGk

Score

N/A

Malware Config

Signatures

Files

9dfc52584ed6016d3d3a59baafa25e85d2cf48c16bf8836bef619b51152e5eaa
.dll windows x86

4f3d619d1cc2f4ba804e9da88c658d22

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

drpmp4object

?CreateCopyMP4Instance@@YAPAVIDrpMediaObject@@PAV1@PAK@Z
?CreateMP4Instance@@YAPAVIDrpMediaObject@@PB_WPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z

drpgeneralobject

?CreateGeneralMediaInstance@@YAPAVIDrpMediaObject@@PB_WPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z

drputility

?AddRef@CDrpFile@@UAEXXZ
??1CDrpFile@@UAE@XZ
?CloseFile@CDrpFile@@UAEXXZ
?GetLoadModuleName@CDrpLoadModule@@SA_NPA_WIPAUHINSTANCE__@@PB_W@Z
?OpenFile@CDrpFile@@UAEKXZ
?GetFileName@CDrpFile@@UAEPB_WXZ
?GetError@CDrpFile@@UAEKXZ
?IsEOF@CDrpFile@@UAE_NXZ
?GetCurrentPosition@CDrpFile@@UAE_JXZ
?SeekToEnd@CDrpFile@@UAEKXZ
?SeekToBegin@CDrpFile@@UAEKXZ
?Seek@CDrpFile@@UAEKK_J@Z
?Write@CDrpFile@@UAEKPAXKPAK@Z
?Read@CDrpFile@@UAEKPAXKPAKPA_NK_J@Z
?GetFileSize@CDrpFile@@UAE_JXZ
?IsFileExist@CDrpFile@@SA_NPB_W@Z
?Release@CDrpFile@@UAEXXZ
??0CDrpFile@@QAE@PB_WIPAUDRP_OPEN_MODE@@@Z
?IsFileOpened@CDrpFile@@UAE_NXZ

drpsoundobject

?CreateSoundInstance@@YAPAVIDrpMediaObject@@PB_WPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z

drpstillobject

?CreateStillInstance@@YAPAVIDrpMediaObject@@PB_WPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z

drpmpegobject

?CreateCopyMpegInstance@@YAPAVIDrpMediaObject@@PAV1@PAK@Z
?GetMpegFile@CMpegObject@@QAEPAVIDrpFile@@XZ
?GetCreateParamInfo@CMpegObject@@QAEXAAW4DRP_FRAMERATE_MODE@@AAW4DRP_REPEAT_PATTERN_24P@@@Z
?GetStreamInfo@CMpegObject@@QAEKPAK0@Z
?CreateMpegInstanceByStreamInfo@@YAPAVIDrpMediaObject@@PB_WPAEKPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z
?CreateMpegInstance@@YAPAVIDrpMediaObject@@PB_WPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z

drprawdvobject

?CreateRawDvInstance@@YAPAVIDrpMediaObject@@PB_WPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z

drpdvaviobject

?CreateDvAviInstance@@YAPAVIDrpMediaObject@@PB_WPAUDRP_OPEN_MODE@@W4DRP_FRAMERATE_MODE@@W4DRP_REPEAT_PATTERN_24P@@PAK@Z

kernel32

MultiByteToWideChar
GetProcAddress
LoadLibraryExW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

msvcr80

_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_malloc_crt
_encode_pointer
memset
??2@YAPAXI@Z
??3@YAXPAX@Z
memcpy_s
??_U@YAPAXI@Z
__RTDynamicCast
__CxxFrameHandler3
??_V@YAXPAX@Z
wcsrchr
_wcsicmp
free

Exports

Exports

DrpCopyMediaObject
DrpCreateExTimelineMediaObject
DrpCreateMediaObjectA
DrpCreateMediaObjectW
DrpCreateVideoCapsuleObject
DrpGetAnalyzedInfo

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f3d619d1cc2f4ba804e9da88c658d22

Headers

File Characteristics

Imports

drpmp4object

drpgeneralobject

drputility

drpsoundobject

drpstillobject

drpmpegobject

drprawdvobject

drpdvaviobject

kernel32

msvcr80

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 56KB - Virtual size: 57KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 820B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 56KB - Virtual size: 57KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 820B