DllCanUnloadNow
DllGetActivationFactory
DllGetClassObject
Overview
overview
5Static
static
3Hydrogen.dll
windows7-x64
1Hydrogen.dll
windows10-2004-x64
1axvlc.dll
windows7-x64
1axvlc.dll
windows10-2004-x64
1installer.exe
windows7-x64
1installer.exe
windows10-2004-x64
5libvlc.dll
windows7-x64
1libvlc.dll
windows10-2004-x64
3libvlccore.dll
windows7-x64
3libvlccore.dll
windows10-2004-x64
3npvlc.dll
windows7-x64
1npvlc.dll
windows10-2004-x64
1Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Hydrogen.dll
Resource
win7-20230220-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
Hydrogen.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral3
Sample
axvlc.dll
Resource
win7-20230220-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral4
Sample
axvlc.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral5
Sample
installer.exe
Resource
win7-20230220-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral6
Sample
installer.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral7
Sample
libvlc.dll
Resource
win7-20230220-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral8
Sample
libvlc.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral9
Sample
libvlccore.dll
Resource
win7-20230220-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral10
Sample
libvlccore.dll
Resource
win10v2004-20230221-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral11
Sample
npvlc.dll
Resource
win7-20230220-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral12
Sample
npvlc.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
51cc825c7a4bf38a053d945945747487.bin
-
Size
10.6MB
-
MD5
9045ec2b93bb64c5cb245bbe70898a2b
-
SHA1
6318c62ccc5de2cbc2499b63af16ac68b6fbdf67
-
SHA256
50706874330254c2ae3568d09299da7cfe60d8a655b91dd3995da9b05b2a4573
-
SHA512
7b29bf35a138d49f4fb4d92aa9c46c4a1f63603399a867add8ccf21947d39d1916c9eafa77c820cf17c166ae87cc647d0da2ee33bd80a5b02e0f7c0bf384a2bd
-
SSDEEP
196608:kHzUGN9lnGDGz7IAGYwmsJ3sqP9oJDiQfdF2kz9202COVDG/wyOQDR:kIGNyDGzyYwmsdx90DiwL2kFfGSl1
Score
3/10
Malware Config
Signatures
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
resource unpack002/Hydrogen.dll unpack002/libvlc.dll
Files
-
51cc825c7a4bf38a053d945945747487.bin.zip
Password: infected
-
c9e6db7f66dff462654e7c65b27cff176b6079a8acfc3726fb858515323e9a60.zip.zip
Password: infected
-
Hydrogen.dll.dll windows x64
Password: infected
b372ca9b03dc5769e17d5b119c6433bd
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
msvcp_win
??1_Lockit@std@@QEAA@XZ
_Strxfrm
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?id@?$ctype@D@std@@2V0locale@2@A
?id@?$collate@D@std@@2V0locale@2@A
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??1facet@locale@std@@MEAA@XZ
??0facet@locale@std@@IEAA@_K@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?_Incref@facet@locale@std@@UEAAXXZ
??Bid@locale@std@@QEAA_KXZ
??0_Lockit@std@@QEAA@H@Z
??1_Locinfo@std@@QEAA@XZ
??0_Locinfo@std@@QEAA@PEBD@Z
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?tolower@?$ctype@D@std@@QEBADD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?_XGetLastError@std@@YAXXZ
??0task_continuation_context@Concurrency@@AEAA@XZ
?_Reset@_ContextCallback@details@Concurrency@@AEAAXXZ
?_Xlength_error@std@@YAXPEBD@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?_Xbad_alloc@std@@YAXXZ
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?__ExceptionPtrToBool@@YA_NPEBX@Z
_Cnd_broadcast
?__ExceptionPtrCreate@@YAXPEAX@Z
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?_Throw_C_error@std@@YAXH@Z
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
?__ExceptionPtrRethrow@@YAXPEBX@Z
_Cnd_wait
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QEAAX_N@Z
?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z
?_Schedule_chore@details@Concurrency@@YAHPEAU_Threadpool_chore@12@@Z
?_Release_chore@details@Concurrency@@YAXPEAU_Threadpool_chore@12@@Z
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
_Cnd_init_in_situ
_Mtx_init_in_situ
_Strcoll
_Cnd_destroy_in_situ
_Mtx_destroy_in_situ
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
_Mtx_lock
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@V?$fpos@U_Mbstatet@@@2@@Z
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z
?always_noconv@codecvt_base@std@@QEBA_NXZ
?uncaught_exception@std@@YA_NXZ
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
_Mtx_unlock
?_Xbad_function_call@std@@YAXXZ
api-ms-win-crt-runtime-l1-1-0
_initterm
_initterm_e
api-ms-win-crt-private-l1-1-0
_o__initialize_narrow_environment
_o__initialize_onexit_table
_o__invalid_parameter_noinfo
_o__invalid_parameter_noinfo_noreturn
_o__lock_file
_o__malloc_base
_o__purecall
_o__register_onexit_function
_o__seh_filter_dll
_o__strtod_l
_o__strtoi64_l
_o__strtoui64_l
_o__unlock_file
_o__wfopen
memmove
_o_atoi
_o_fclose
_o_fflush
_o_fgetc
_o_fgetpos
_o_fputc
_o_fread
_o_free
_o_fseek
_o_fsetpos
_o_ftell
_o_fwrite
_o_isxdigit
_o_malloc
_o_mbstowcs_s
_o_nextafterf
_o_pow
_o_powf
_o_realloc
_o_roundf
_o_setvbuf
_o_strcpy_s
_o_strncpy_s
_o_strtod
_o_strtol
_o_strtoul
_o_terminate
_o_tolower
_o_ungetc
_o_wcscpy_s
__C_specific_handler
__CxxFrameHandler3
_CxxThrowException
memcpy
strrchr
_o__execute_onexit_table
_o__errno
strchr
strstr
_o__fseeki64
_o__free_base
_o__crt_atexit
_o__create_locale
_o__configure_narrow_argv
_o__cexit
_o__callnewh
_o__get_stream_buffer_pointers
_o__aligned_malloc
_o__aligned_free
_o___stdio_common_vswprintf_s
_o___stdio_common_vswprintf
_o___stdio_common_vsscanf
_o___stdio_common_vsprintf_s
_o___stdio_common_vsnprintf_s
_o___stdio_common_vfprintf
_o___std_type_info_name
_o___std_type_info_destroy_list
_o___std_exception_destroy
_o___std_exception_copy
_o___acrt_iob_func
__std_terminate
__CxxFrameHandler4
__std_type_info_hash
__std_type_info_compare
__RTtypeid
__RTDynamicCast
memchr
memcmp
api-ms-win-crt-string-l1-1-0
memset
strcmp
strncmp
hrtfapo
ord1
ord2
api-ms-win-core-winrt-string-l1-1-0
WindowsCompareStringOrdinal
WindowsDeleteString
WindowsCreateStringReference
WindowsGetStringLen
WindowsStringHasEmbeddedNull
WindowsIsStringEmpty
WindowsDuplicateString
WindowsGetStringRawBuffer
WindowsCreateString
api-ms-win-core-winrt-error-l1-1-0
GetRestrictedErrorInfo
RoOriginateError
RoTransformError
SetRestrictedErrorInfo
RoOriginateErrorW
RoFailFastWithErrorContext
api-ms-win-core-com-l1-1-0
CoTaskMemFree
CoCreateFreeThreadedMarshaler
CoCreateGuid
CoMarshalInterface
CoUnmarshalInterface
CoInitializeEx
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
api-ms-win-core-errorhandling-l1-1-0
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RaiseException
SetLastError
GetLastError
api-ms-win-core-debug-l1-1-0
IsDebuggerPresent
DebugBreak
OutputDebugStringW
OutputDebugStringA
api-ms-win-core-processthreads-l1-1-0
GetProcessId
CreateThread
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
ProcessIdToSessionId
OpenProcessToken
api-ms-win-core-localization-l1-2-0
FormatMessageW
api-ms-win-core-handle-l1-1-0
DuplicateHandle
CloseHandle
api-ms-win-core-synch-l1-1-0
CreateEventExW
ReleaseMutex
WaitForSingleObjectEx
WaitForSingleObject
OpenSemaphoreW
CreateMutexExW
CreateSemaphoreExW
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeSRWLock
EnterCriticalSection
LeaveCriticalSection
OpenEventW
TryAcquireSRWLockShared
AcquireSRWLockShared
ReleaseSRWLockShared
SetEvent
CreateEventW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
ResetEvent
InitializeCriticalSectionEx
ReleaseSemaphore
WaitForMultipleObjectsEx
api-ms-win-core-heap-l1-1-0
HeapFree
GetProcessHeap
HeapAlloc
api-ms-win-eventing-provider-l1-1-0
EventWriteTransfer
EventSetInformation
EventRegister
EventUnregister
api-ms-win-core-synch-l1-2-0
InitOnceBeginInitialize
WakeAllConditionVariable
WakeConditionVariable
SleepConditionVariableCS
InitializeConditionVariable
InitOnceComplete
InitOnceExecuteOnce
Sleep
api-ms-win-core-winrt-l1-1-0
RoUninitialize
RoActivateInstance
RoGetActivationFactory
RoInitialize
api-ms-win-core-libraryloader-l1-2-0
GetModuleHandleExW
GetModuleFileNameA
GetModuleFileNameW
DisableThreadLibraryCalls
GetModuleHandleW
GetProcAddress
api-ms-win-core-util-l1-1-0
DecodePointer
EncodePointer
api-ms-win-core-synch-l1-2-1
WaitForMultipleObjects
api-ms-win-core-rtlsupport-l1-1-0
RtlLookupFunctionEntry
RtlCaptureContext
RtlVirtualUnwind
api-ms-win-core-processthreads-l1-1-1
OpenProcess
IsProcessorFeaturePresent
api-ms-win-core-profile-l1-1-0
QueryPerformanceCounter
QueryPerformanceFrequency
api-ms-win-core-sysinfo-l1-1-0
GetSystemInfo
GetSystemTimeAsFileTime
api-ms-win-core-interlocked-l1-1-0
InitializeSListHead
api-ms-win-core-errorhandling-l1-1-2
RaiseFailFastException
api-ms-win-core-file-l1-1-0
FindClose
FindNextFileW
FlushFileBuffers
SetFilePointerEx
GetFileAttributesExW
SetFileAttributesW
RemoveDirectoryW
CreateFileA
DeleteFileW
FindFirstFileExW
WriteFile
CreateDirectoryW
ReadFile
api-ms-win-core-file-l2-1-0
MoveFileExW
api-ms-win-core-file-l1-2-0
CreateFile2
api-ms-win-core-sysinfo-l1-2-0
GetNativeSystemInfo
GetSystemTimePreciseAsFileTime
ws2_32
select
__WSAFDIsSet
accept
inet_ntop
ioctlsocket
GetHostNameW
getsockname
sendto
recvfrom
WSACreateEvent
WSAEventSelect
ntohs
listen
bind
connect
FreeAddrInfoW
GetAddrInfoW
setsockopt
WSAStartup
inet_pton
closesocket
socket
recv
htons
send
WSAGetLastError
inet_ntoa
mfplat
MFShutdown
MFStartup
MFCreateWaveFormatExFromMFMediaType
MFCreateMediaType
MFCreateAttributes
mfreadwrite
MFCreateSourceReaderFromURL
xaudio2_9
ord5
ord6
ord1
ord2
api-ms-win-core-registry-l1-1-0
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegGetValueW
RegCloseKey
RegQueryValueExA
RegGetValueA
RegOpenKeyExW
coremessaging
CoreUICallCreateEndpointHost
CoreUICallSend
CoreUICallReceive
CoreUICreate
api-ms-win-security-sddl-l1-1-0
ConvertStringSecurityDescriptorToSecurityDescriptorW
api-ms-win-core-heap-l2-1-0
LocalAlloc
LocalFree
api-ms-win-security-base-l1-1-0
FreeSid
InitializeSecurityDescriptor
EqualSid
GetTokenInformation
IsValidSid
CheckTokenMembership
AllocateAndInitializeSid
CopySid
AddAccessAllowedAce
InitializeAcl
GetLengthSid
SetSecurityDescriptorDacl
api-ms-win-ro-typeresolution-l1-1-0
RoResolveNamespace
api-ms-win-shcore-stream-winrt-l1-1-0
CreateStreamOverRandomAccessStream
api-ms-win-core-memory-l1-1-0
UnmapViewOfFile
api-ms-win-core-memory-l1-1-1
MapViewOfFileFromApp
CreateFileMappingFromApp
api-ms-win-core-threadpool-l1-2-0
SetThreadpoolWait
SetThreadpoolTimer
CloseThreadpoolCleanupGroupMembers
CloseThreadpoolWait
CreateThreadpoolWait
CreateThreadpoolTimer
CreateThreadpoolWork
SubmitThreadpoolWork
CloseThreadpoolWork
CreateThreadpoolCleanupGroup
CloseThreadpoolCleanupGroup
CloseThreadpoolTimer
WaitForThreadpoolTimerCallbacks
WaitForThreadpoolWorkCallbacks
WaitForThreadpoolWaitCallbacks
api-ms-win-core-featurestaging-l1-1-0
RecordFeatureUsage
GetFeatureEnabledState
UnsubscribeFeatureStateChangeNotification
SubscribeFeatureStateChangeNotification
dwrite
DWriteCreateFactory
dxgi
CreateDXGIFactory2
d3d11
D3D11CreateDevice
CreateDirect3D11DeviceFromDXGIDevice
d3d12
ord102
ord101
D3D12SerializeRootSignature
api-ms-win-security-provider-l1-1-0
GetSecurityInfo
SetEntriesInAclW
SetSecurityInfo
api-ms-win-core-psm-app-l1-1-0
PsmRegisterAppStateChangeNotification
PsmUnregisterAppStateChangeNotification
ntdll
NtAlpcCancelMessage
NtCompleteConnectPort
NtAlpcAcceptConnectPort
NtAlpcOpenSenderProcess
NtAlpcCreatePort
RtlInitUnicodeString
RtlPublishWnfStateData
NtAlpcConnectPort
AlpcGetMessageAttribute
RtlSubscribeWnfStateChangeNotification
NtQueryWnfStateData
RtlUnsubscribeWnfNotificationWaitForCompletion
NtAlpcSendWaitReceivePort
api-ms-win-rtcore-ntuser-window-l1-1-0
KillTimer
SetTimer
api-ms-win-crt-time-l1-1-0
clock
_time64
api-ms-win-crt-math-l1-1-0
expf
fmodf
atanf
atan2f
log10f
modff
logf
cosf
_fdtest
tanf
api-ms-win-core-winrt-error-l1-1-1
RoGetMatchingRestrictedErrorInfo
RoReportUnhandledError
api-ms-win-security-provider-ansi-l1-1-0
SetEntriesInAclA
GetExplicitEntriesFromAclA
api-ms-win-core-delayload-l1-1-1
ResolveDelayLoadedAPI
api-ms-win-core-delayload-l1-1-0
DelayLoadFailureHook
rometadata
MetaDataGetDispenser
api-ms-win-security-appcontainer-l1-1-0
GetAppContainerNamedObjectPath
api-ms-win-core-namedpipe-l1-1-0
CreateNamedPipeW
ConnectNamedPipe
DisconnectNamedPipe
api-ms-win-core-namedpipe-ansi-l1-1-0
WaitNamedPipeA
api-ms-win-core-io-l1-1-0
GetOverlappedResult
api-ms-win-core-io-l1-1-1
CancelIo
Exports
Exports
Sections
.text Size: 13.1MB - Virtual size: 13.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6.3MB - Virtual size: 6.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2.7MB - Virtual size: 2.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 404KB - Virtual size: 404KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 56B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 1024B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 628KB - Virtual size: 627KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
axvlc.dll.dll regsvr32 windows x86
Password: infected
a2429b0fe47d5b81c8675de4fcc193a8
Code Sign
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0e:6a:5f:c7:a3:da:e0:db:fb:fc:eb:ee:85:0d:b2:05:6d:84:3d:38:1e:13:dc:47:80:b7:b0:be:6f:17:a0:86Signer
Actual PE Digest0e:6a:5f:c7:a3:da:e0:db:fb:fc:eb:ee:85:0d:b2:05:6d:84:3d:38:1e:13:dc:47:80:b7:b0:be:6f:17:a0:86Digest Algorithmsha256PE Digest Matchestrue68:7f:5e:fe:77:4a:05:c5:15:90:23:89:44:6a:38:0c:6d:f6:6e:2cSigner
Actual PE Digest68:7f:5e:fe:77:4a:05:c5:15:90:23:89:44:6a:38:0c:6d:f6:6e:2cDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
libvlc
libvlc_audio_get_channel
libvlc_audio_get_mute
libvlc_audio_get_track
libvlc_audio_get_track_count
libvlc_audio_get_track_description
libvlc_audio_get_volume
libvlc_audio_set_channel
libvlc_audio_set_mute
libvlc_audio_set_track
libvlc_audio_set_volume
libvlc_audio_toggle_mute
libvlc_chapter_descriptions_release
libvlc_event_attach
libvlc_event_detach
libvlc_free
libvlc_get_version
libvlc_media_add_option_flag
libvlc_media_event_manager
libvlc_media_get_duration
libvlc_media_get_meta
libvlc_media_list_add_media
libvlc_media_list_count
libvlc_media_list_index_of_item
libvlc_media_list_item_at_index
libvlc_media_list_lock
libvlc_media_list_new
libvlc_media_list_player_is_playing
libvlc_media_list_player_new
libvlc_media_list_player_next
libvlc_media_list_player_pause
libvlc_media_list_player_play
libvlc_media_list_player_play_item_at_index
libvlc_media_list_player_previous
libvlc_media_list_player_release
libvlc_media_list_player_set_media_list
libvlc_media_list_player_set_media_player
libvlc_media_list_player_set_playback_mode
libvlc_media_list_player_stop
libvlc_media_list_release
libvlc_media_list_remove_index
libvlc_media_list_unlock
libvlc_media_new_location
libvlc_media_parse_with_options
libvlc_media_player_event_manager
libvlc_media_player_get_chapter
libvlc_media_player_get_chapter_count
libvlc_media_player_get_chapter_count_for_title
libvlc_media_player_get_full_chapter_descriptions
libvlc_media_player_get_full_title_descriptions
libvlc_media_player_get_length
libvlc_media_player_get_media
libvlc_media_player_get_position
libvlc_media_player_get_rate
libvlc_media_player_get_state
libvlc_media_player_get_time
libvlc_media_player_get_title
libvlc_media_player_get_title_count
libvlc_media_player_has_vout
libvlc_media_player_new
libvlc_media_player_next_chapter
libvlc_media_player_previous_chapter
libvlc_media_player_release
libvlc_media_player_set_chapter
libvlc_media_player_set_hwnd
libvlc_media_player_set_pause
libvlc_media_player_set_position
libvlc_media_player_set_rate
libvlc_media_player_set_time
libvlc_media_player_set_title
libvlc_media_release
libvlc_media_retain
libvlc_media_tracks_get
libvlc_media_tracks_release
libvlc_new
libvlc_release
libvlc_title_descriptions_release
libvlc_track_description_list_release
libvlc_video_get_aspect_ratio
libvlc_video_get_crop_geometry
libvlc_video_get_logo_int
libvlc_video_get_marquee_int
libvlc_video_get_marquee_string
libvlc_video_get_scale
libvlc_video_get_size
libvlc_video_get_spu
libvlc_video_get_spu_count
libvlc_video_get_spu_description
libvlc_video_get_teletext
libvlc_video_get_track
libvlc_video_get_track_count
libvlc_video_get_track_description
libvlc_video_set_aspect_ratio
libvlc_video_set_crop_geometry
libvlc_video_set_deinterlace
libvlc_video_set_logo_int
libvlc_video_set_logo_string
libvlc_video_set_marquee_int
libvlc_video_set_marquee_string
libvlc_video_set_scale
libvlc_video_set_spu
libvlc_video_set_teletext
libvlc_video_set_track
libvlc_video_take_snapshot
advapi32
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
gdi32
BitBlt
CloseEnhMetaFile
CloseMetaFile
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateEnhMetaFileW
CreateMetaFileW
CreateRectRgnIndirect
CreateSolidBrush
DeleteDC
DeleteObject
GetDeviceCaps
GetStockObject
LineTo
MoveToEx
OffsetViewportOrgEx
RestoreDC
SaveDC
SelectObject
SetMapMode
SetViewportExtEx
SetWindowExtEx
SetWindowOrgEx
kernel32
CloseHandle
CreateEventA
CreateFileW
CreateSemaphoreW
CreateThread
DeleteCriticalSection
DeleteFileW
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileInformationByHandle
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetTempPathW
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
ReleaseSemaphore
SetEvent
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
msvcrt
__dllonexit
__mb_cur_max
_amsg_exit
_errno
_exit
_initterm
_iob
_lock
_onexit
fwprintf
_stricmp
_strnicmp
_unlock
calloc
fgetwc
fopen
fputc
fputs
fputwc
free
fwrite
getc
getenv
islower
isspace
isupper
iswalnum
iswalpha
iswctype
isxdigit
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
realloc
setlocale
sprintf
strchr
strcmp
strcoll
strerror
strftime
strlen
strncmp
strtol
strtoul
strxfrm
_wcsicmp
abort
tolower
towlower
towupper
ungetc
ungetwc
vfprintf
wcschr
wcscoll
wcscpy
wcsftime
wcslen
wcstol
wcstoul
wcsxfrm
atoi
_write
_open
_close
ole32
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CreateBindCtx
CreateDataAdviseHolder
CreateErrorInfo
CreateOleAdviseHolder
OleFlushClipboard
OleIsCurrentClipboard
OleRegEnumVerbs
OleRegGetUserType
SetErrorInfo
StringFromGUID2
oleaut32
DispGetIDsOfNames
DispInvoke
LoadRegTypeLib
LoadTypeLibEx
OleCreatePictureIndirect
OleTranslateColor
SafeArrayGetDim
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SysAllocString
SysAllocStringLen
SysFreeString
SysStringLen
UnRegisterTypeLib
VariantChangeType
VariantClear
VariantCopy
VariantInit
shlwapi
SHDeleteKeyW
UrlIsW
user32
BeginDeferWindowPos
BeginPaint
CallNextHookEx
ClientToScreen
CreateWindowExA
CreateWindowExW
DefWindowProcA
DefWindowProcW
DeferWindowPos
DestroyIcon
DestroyWindow
DispatchMessageW
DrawIcon
EndDeferWindowPos
EndPaint
FillRect
GetActiveWindow
GetCapture
GetClassInfoA
GetClassInfoW
GetClientRect
GetCursorPos
GetDC
GetFocus
GetKeyState
GetMessagePos
GetMessageW
GetMonitorInfoA
GetParent
GetSystemMetrics
GetUpdateRect
GetWindow
GetWindowLongA
GetWindowLongW
GetWindowRect
GetWindowTextA
GetWindowThreadProcessId
InvalidateRect
IsDlgButtonChecked
KillTimer
LoadCursorA
LoadCursorW
LoadImageW
MonitorFromWindow
MoveWindow
OffsetRect
PostMessageA
PostMessageW
PostThreadMessageW
PtInRect
RegisterClassA
RegisterClassW
ScreenToClient
SendMessageA
SetActiveWindow
SetCursor
SetFocus
SetParent
SetRect
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowsHookExA
ShowWindow
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer
Sections
.text Size: 968KB - Virtual size: 968KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 84KB - Virtual size: 83KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.buildid Size: 512B - Virtual size: 53B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 3KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 180B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 44B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 168KB - Virtual size: 168KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 34KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/4 Size: 512B - Virtual size: 20B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
installer.exe.exe windows x86
Password: infected
e9911626e57ca2e368b85930484e29c0
Code Sign
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
14:63:be:5f:24:68:80:95:53:17:86:44:32:8c:eb:79:3e:cb:e6:b6:a7:4a:0e:86:ef:46:07:e8:d5:aa:c0:4fSigner
Actual PE Digest14:63:be:5f:24:68:80:95:53:17:86:44:32:8c:eb:79:3e:cb:e6:b6:a7:4a:0e:86:ef:46:07:e8:d5:aa:c0:4fDigest Algorithmsha256PE Digest Matchestrue8b:6e:52:9c:97:59:9b:98:36:e6:8e:ee:d4:13:aa:39:73:89:96:ccSigner
Actual PE Digest8b:6e:52:9c:97:59:9b:98:36:e6:8e:ee:d4:13:aa:39:73:89:96:ccDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
libvlc
libvlc_add_intf
libvlc_new
libvlc_playlist_play
libvlc_release
libvlc_set_app_id
libvlc_set_user_agent
libvlc_wait
advapi32
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegOpenKeyExW
RegQueryValueExW
kernel32
CloseHandle
CreateDirectoryW
CreateFileW
CreateSemaphoreW
CreateThread
DeleteCriticalSection
DeleteFileW
DuplicateHandle
EnterCriticalSection
FindClose
FindFirstFileW
FindNextFileW
FreeLibrary
GetCommandLineW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessId
GetStartupInfoA
GetSystemTimeAsFileTime
GetThreadContext
GetTickCount
HeapSetInformation
InitializeCriticalSection
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryW
LocalFree
MultiByteToWideChar
OpenThread
QueryPerformanceCounter
ReleaseSemaphore
ResetEvent
ResumeThread
RtlCaptureContext
SetErrorMode
SetEvent
SetLastError
SetNamedPipeHandleState
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransactNamedPipe
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
VirtualQueryEx
WaitForMultipleObjects
WaitForSingleObject
WaitNamedPipeW
WideCharToMultiByte
WriteFile
msvcrt
__dllonexit
__getmainargs
__initenv
__lconv_init
__mb_cur_max
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_exit
_fileno
_fmode
_fstat64
_initterm
_iob
_lock
_lseeki64
_onexit
_setmode
_snwprintf
fwprintf
_strnicmp
_unlock
calloc
exit
fclose
fflush
fopen
fprintf
fputc
fputs
fputwc
free
fwprintf
fwrite
getenv
isspace
iswctype
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
raise
rand
realloc
setlocale
setvbuf
signal
sprintf
strchr
strcmp
strcoll
strerror
strftime
strlen
strncmp
strtoul
strxfrm
abort
towlower
towupper
vfprintf
wcscmp
wcscoll
wcscpy
wcsftime
wcslen
wcsncmp
wcstol
wcsxfrm
atoi
_write
_read
_putenv
_open
_fileno
_fdopen
_close
shell32
CommandLineToArgvW
SHGetFolderPathW
user32
MessageBoxW
wininet
HttpAddRequestHeadersW
HttpOpenRequestW
HttpQueryInfoW
HttpSendRequestW
InternetCloseHandle
InternetConnectW
InternetCrackUrlW
InternetOpenW
InternetQueryDataAvailable
InternetReadFile
InternetSetOptionW
Exports
Exports
WinMain@16
Sections
.text Size: 766KB - Virtual size: 766KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.buildid Size: 512B - Virtual size: 53B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 4KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 69B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 52B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 74KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 25KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/4 Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
libvlc.dll.dll windows x86
Password: infected
2b464709f4b94c4bc043fd735f7d08f5
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetConsoleScreenBufferSize
SetProcessAffinityMask
GetProcessDEPPolicy
EnumCalendarInfoW
EnumResourceTypesW
GetCPInfo
SetDynamicTimeZoneInformation
WriteFile
GetThreadIdealProcessorEx
DeleteTimerQueue
RemoveDllDirectory
ExpandEnvironmentStringsW
GetSystemDefaultUILanguage
GetAppContainerNamedObjectPath
SetConsoleMode
SetCurrentConsoleFontEx
GetTimeFormatEx
SetFileBandwidthReservation
VirtualAlloc
GetProfileIntW
GetProcessAffinityMask
WakeAllConditionVariable
HeapLock
SetThreadpoolWaitEx
DisassociateCurrentThreadFromCallback
SetFileTime
GetModuleFileNameW
OpenPrivateNamespaceW
CreateThreadpoolIo
ReOpenFile
DeleteFiber
CreateNamedPipeW
WaitForMultipleObjects
GetCommModemStatus
RequestWakeupLatency
GetConsoleHistoryInfo
GetThreadLocale
SetEnvironmentVariableW
AddScopedPolicyIDAce
SetThreadUILanguage
SetConsoleWindowInfo
GetUserDefaultLocaleName
LocalHandle
GetProcessId
SignalObjectAndWait
DeleteTimerQueueEx
GetUserDefaultUILanguage
GetNamedPipeClientComputerNameW
CompareStringOrdinal
GetThreadPreferredUILanguages
DeleteAtom
GetProcessVersion
GetConsoleAliasExesW
InitializeCriticalSection
SetFilePointer
GetProcessMitigationPolicy
EnumUILanguagesW
GetQueuedCompletionStatus
GetCompressedFileSizeW
GetConsoleTitleW
FlsGetValue
OpenFileById
WriteFileEx
FindFirstFileTransactedW
EnumResourceNamesW
UnlockFileEx
CreateBoundaryDescriptorW
PeekNamedPipe
EnumCalendarInfoExW
CreateMutexW
OpenFile
GetLargePageMinimum
CreateHardLinkW
ResetWriteWatch
GetVolumePathNameW
GetCommMask
LocalAlloc
CreateFileW
GetDateFormatEx
GetFileAttributesW
GetTapePosition
FreeLibraryAndExitThread
GetCurrentThreadId
UnregisterBadMemoryNotification
GetFileAttributesTransactedW
DebugActiveProcessStop
OpenEventW
EnumSystemCodePagesW
GetPrivateProfileSectionNamesW
ReleaseMutex
WriteTapemark
GetCommTimeouts
GetSystemDirectoryW
SetSearchPathMode
IsSystemResumeAutomatic
FreeEnvironmentStringsW
IsBadCodePtr
GetAtomNameW
HeapValidate
GetSystemDefaultLangID
GetACP
PrepareTape
RtlCaptureStackBackTrace
FreeResource
GlobalAddAtomW
FindFirstChangeNotificationW
SetProcessMitigationPolicy
GetNamedPipeInfo
SwitchToFiber
PostQueuedCompletionStatus
CancelWaitableTimer
GetVolumeNameForVolumeMountPointW
GetLogicalDriveStringsW
EndUpdateResourceW
RemoveSecureMemoryCacheCallback
MultiByteToWideChar
CloseThreadpoolCleanupGroupMembers
GetPrivateProfileStringW
ResolveLocaleName
SetVolumeLabelW
QueryThreadProfiling
WritePrivateProfileStructW
LocalFileTimeToFileTime
SetConsoleScreenBufferInfoEx
EnumSystemLanguageGroupsW
GetDevicePowerState
GetTickCount64
VerifyScripts
OpenWaitableTimerW
MoveFileWithProgressW
SetCalendarInfoW
Wow64RevertWow64FsRedirection
GetLastError
GetCurrencyFormatEx
WaitForThreadpoolWaitCallbacks
EnumSystemLocalesEx
CreateFileTransactedW
GetCalendarInfoW
EscapeCommFunction
GetFileAttributesA
GetLogicalProcessorInformationEx
SetCriticalSectionSpinCount
GetConsoleProcessList
OutputDebugStringW
WaitCommEvent
ReadConsoleInputW
FlushViewOfFile
GetThreadUILanguage
CreateFileA
GetUserDefaultLCID
FileTimeToSystemTime
GetNamedPipeHandleStateW
OfferVirtualMemory
GetCurrentThread
ReadConsoleOutputW
InterlockedFlushSList
TerminateThread
GetActiveProcessorGroupCount
LoadLibraryA
lstrcatW
WaitForSingleObjectEx
ReclaimVirtualMemory
QueryPerformanceFrequency
DeleteFileW
OpenSemaphoreW
lstrcpyA
GlobalFree
CloseHandle
SetProcessPreferredUILanguages
WriteConsoleOutputAttribute
CreateThreadpoolCleanupGroup
GetProcessIoCounters
GetNativeSystemInfo
AllocateUserPhysicalPagesNuma
CompareStringEx
FreeConsole
GetSystemInfo
CreateSymbolicLinkTransactedW
GetProcessHeaps
WriteProfileSectionW
BindIoCompletionCallback
SetThreadpoolWait
CreateThreadpoolTimer
LoadLibraryW
CancelIoEx
HeapSetInformation
GetThreadIOPendingFlag
FindNLSString
SetComputerNameW
GetActiveProcessorCount
FindResourceW
HeapAlloc
WriteConsoleInputW
Wow64SuspendThread
ClearCommError
FileTimeToLocalFileTime
GetLocalTime
GetDefaultCommConfigW
GetUserGeoID
GetQueuedCompletionStatusEx
GetCurrentDirectoryW
GetProcessPreferredUILanguages
SetStdHandle
UpdateResourceW
GetCurrentConsoleFontEx
FindNextChangeNotification
VirtualProtectEx
SetVolumeMountPointW
FindNextFileNameW
HeapDestroy
GetNamedPipeClientSessionId
QueryIdleProcessorCycleTimeEx
IsThreadAFiber
LocalSize
GetCurrentProcessorNumber
GetThreadContext
SubmitThreadpoolWork
DeleteFileTransactedW
SetLocaleInfoW
SetThreadGroupAffinity
InitAtomTable
WriteConsoleW
GetErrorMode
SetProcessDEPPolicy
Beep
GetProcAddress
VirtualAllocEx
CreateMutexExW
LocalFree
GetTimeFormatW
MoveFileExW
GetThreadId
GetOverlappedResultEx
SetFileApisToOEM
ReplaceFileW
LockFileEx
GetFileSize
SetDefaultCommConfigW
CreateMemoryResourceNotification
ExitProcess
SetProtectedPolicy
DisableThreadProfiling
SetConsoleCP
FindFirstStreamW
GetProcessHeap
GetNumberOfConsoleInputEvents
SetThreadExecutionState
FreeLibrary
SetFirmwareEnvironmentVariableExW
TransactNamedPipe
CopyFileW
FlushInstructionCache
GetProfileStringW
SetThreadpoolStackInformation
GetNumaProximityNode
WideCharToMultiByte
SetCommBreak
GetVolumePathNamesForVolumeNameW
lstrcpyW
GetLongPathNameTransactedW
WinExec
RemoveVectoredContinueHandler
LocaleNameToLCID
WritePrivateProfileSectionW
GetThreadTimes
FreeUserPhysicalPages
QueryFullProcessImageNameW
ReadConsoleOutputCharacterW
LocalReAlloc
GetTempFileNameW
CreateProcessA
GetSystemTimeAsFileTime
AddAtomW
EnumSystemGeoID
TerminateJobObject
EnumSystemFirmwareTables
SetFileApisToANSI
Wow64GetThreadSelectorEntry
GetThreadGroupAffinity
VirtualFreeEx
CopyFileExW
CreateWaitableTimerExW
SetProcessWorkingSetSize
BackupRead
InterlockedPushEntrySList
MapViewOfFile
GetProcessPriorityBoost
GetNumaNodeProcessorMaskEx
FindNextVolumeW
IsValidLocaleName
lstrcmpiW
BackupSeek
QueryPerformanceCounter
GetNLSVersion
GetSystemRegistryQuota
CreateMailslotW
GetStringTypeW
GetSystemPreferredUILanguages
FreeLibraryWhenCallbackReturns
SetCommTimeouts
WaitNamedPipeW
GetTimeZoneInformationForYear
FlsFree
SetDllDirectoryW
SetCommConfig
GetCalendarInfoEx
GetStringTypeA
GetProcessHandleCount
MulDiv
InitializeSynchronizationBarrier
LocalUnlock
GetFirmwareEnvironmentVariableW
MoveFileW
VirtualQuery
GetVolumeInformationByHandleW
GetProcessTimes
GetFileTime
GlobalReAlloc
AddIntegrityLabelToBoundaryDescriptor
LoadLibraryExW
GenerateConsoleCtrlEvent
GetConsoleSelectionInfo
IsDebuggerPresent
VirtualQueryEx
DebugSetProcessKillOnExit
SetUnhandledExceptionFilter
IsBadStringPtrW
FileTimeToDosDateTime
CreateThreadpoolWork
HeapSize
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileW
FindClose
HeapReAlloc
ReadConsoleW
EnumSystemLocalesW
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
GetFileType
GetStdHandle
SetFilePointerEx
GetFileSizeEx
GetModuleHandleExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
RaiseException
TerminateProcess
GetCurrentProcess
InitializeSListHead
GetCurrentProcessId
GetModuleHandleW
GetStartupInfoW
UnhandledExceptionFilter
IsProcessorFeaturePresent
LCMapStringEx
DecodePointer
EncodePointer
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
QueryProtectedPolicy
IsThreadpoolTimerSet
GetLongPathNameW
SetConsoleActiveScreenBuffer
GetSystemTimeAdjustment
VirtualFree
EnterCriticalSection
FindFirstFileNameW
SetConsoleTextAttribute
SetDefaultDllDirectories
SetLastError
HeapFree
CreateSemaphoreExW
GetConsoleScreenBufferInfo
CopyFileTransactedW
VirtualProtect
GetSystemDefaultLCID
FindFirstVolumeW
MapUserPhysicalPagesScatter
LoadModule
RtlUnwind
NeedCurrentDirectoryForExePathW
FindFirstFileExW
WritePrivateProfileStringW
HeapCreate
WriteProcessMemory
GetProcessShutdownParameters
GetNumaAvailableMemoryNodeEx
InitOnceExecuteOnce
GlobalHandle
CompareFileTime
EnumTimeFormatsEx
CloseThreadpool
GetNamedPipeServerSessionId
LocalLock
CancelIo
GetThreadPriorityBoost
SetInformationJobObject
RemoveVectoredExceptionHandler
AddVectoredContinueHandler
GetConsoleAliasExesLengthW
SetConsoleCtrlHandler
QueryDosDeviceW
PowerSetRequest
SizeofResource
QueryUnbiasedInterruptTime
IsValidNLSVersion
ReadFile
EnterSynchronizationBarrier
GetPrivateProfileStructW
GetSystemFirmwareTable
SetProcessPriorityBoost
ResetEvent
GetNumaHighestNodeNumber
SetEndOfFile
user32
VkKeyScanExW
MapVirtualKeyW
SendMessageTimeoutW
GrayStringW
SetClipboardViewer
MessageBoxW
GetClipboardOwner
SetWindowRgn
GetGuiResources
ScreenToClient
GetScrollInfo
GetClassInfoW
InvalidateRgn
GetCapture
SetTimer
DdeConnect
GetMonitorInfoW
RegisterClassW
BroadcastSystemMessageExW
SetCoalescableTimer
SetMenuInfo
DrawStateW
IsProcessDPIAware
IsWinEventHookInstalled
MessageBoxA
GetSysColor
DdeQueryConvInfo
SetProcessWindowStation
UnhookWindowsHookEx
CreateAcceleratorTableW
IsRectEmpty
SetLayeredWindowAttributes
IntersectRect
CharNextW
ScrollWindowEx
IsWow64Message
DestroyCaret
IsCharAlphaW
GetTabbedTextExtentW
GetKeyNameTextW
DdeDisconnect
DdeFreeStringHandle
DdeQueryNextServer
GetAncestor
IsCharUpperW
GetCursorPos
GetWindowTextW
SendDlgItemMessageW
gdi32
FillPath
CreateBitmapIndirect
FrameRgn
GetColorAdjustment
GetBitmapDimensionEx
GetPaletteEntries
PlgBlt
EnumFontsW
PaintRgn
GetCharWidth32W
SetEnhMetaFileBits
SetLayout
GetStockObject
GetFontLanguageInfo
PolyBezierTo
PathToRegion
ExtFloodFill
GetDeviceCaps
PolyTextOutW
OffsetRgn
CreateRectRgn
GetBoundsRect
DeleteDC
AddFontResourceExW
SelectPalette
DrawEscape
SetViewportOrgEx
SelectClipRgn
CreatePalette
CombineTransform
ResizePalette
CreatePenIndirect
GetGlyphOutlineW
InvertRgn
ArcTo
SwapBuffers
GetBrushOrgEx
CreateBitmap
CreateFontIndirectW
GetRandomRgn
GetMapMode
GetMetaFileBitsEx
PtVisible
SetTextCharacterExtra
StartDocW
GetCharWidthW
UnrealizeObject
SetWorldTransform
SetBkMode
SetBrushOrgEx
GdiSetBatchLimit
crypt32
CryptStringToBinaryA
Exports
Exports
Ffoaefiokaejifd
UpdateDriverForPlugAndPlayDevicesW
Weoosafiawiogdui
libvlc_add_intf
libvlc_new
libvlc_playlist_play
libvlc_release
libvlc_set_app_id
libvlc_set_user_agent
libvlc_wait
Sections
.text Size: 396KB - Virtual size: 394KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 230KB - Virtual size: 234KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.odata Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
libvlccore.dll.dll windows x86
Password: infected
f11716690dc3b1ac312b344caaf28102
Code Sign
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
5f:72:ee:cc:09:db:34:53:a3:c3:25:13:70:9c:f4:cc:a0:a2:96:d4:b1:53:af:cd:ae:25:95:fc:7f:1f:f1:efSigner
Actual PE Digest5f:72:ee:cc:09:db:34:53:a3:c3:25:13:70:9c:f4:cc:a0:a2:96:d4:b1:53:af:cd:ae:25:95:fc:7f:1f:f1:efDigest Algorithmsha256PE Digest Matchestrue02:77:8c:15:bd:d2:b4:3e:5d:35:ca:35:39:9e:a9:be:1a:45:38:1dSigner
Actual PE Digest02:77:8c:15:bd:d2:b4:3e:5d:35:ca:35:39:9e:a9:be:1a:45:38:1dDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
CryptAcquireContextA
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
kernel32
AllocConsole
CloseHandle
CreateDirectoryA
CreateEventA
CreateFileA
CreateFileW
CreateMutexW
CreateSemaphoreW
CreateThread
CreateTimerQueueTimer
DeleteCriticalSection
DeleteTimerQueueTimer
DeviceIoControl
DuplicateHandle
EnterCriticalSection
EnumResourceLanguagesA
EnumSystemLocalesA
FormatMessageW
FreeLibrary
GetACP
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetFileAttributesW
GetFileSize
GetLastError
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNativeSystemInfo
GetProcAddress
GetProcessHeap
GetProcessTimes
GetProcessWorkingSetSize
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTempFileNameW
GetTempPathA
GetTempPathW
GetThreadLocale
GetThreadTimes
GetTickCount
GetTimeZoneInformation
GetVersion
GetVersionExA
GlobalMemoryStatus
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MapViewOfFile
MultiByteToWideChar
OpenFileMappingA
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
QueueUserAPC
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
SetConsoleOutputCP
SetConsoleTitleW
SetEvent
SetFilePointerEx
SetLastError
SetPriorityClass
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepEx
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteConsoleW
WriteFile
msvcrt
__dllonexit
__mb_cur_max
__setusermatherr
_amsg_exit
_beginthreadex
_close
_commit
_endthreadex
_errno
_exit
_fdopen
_fileno
_findclose
_fstati64
_get_osfhandle
_initterm
_iob
_isatty
_lock
_lseeki64
_onexit
_open_osfhandle
_pipe
_snwprintf
_wfindfirst
time
mktime
localtime
gmtime
fwprintf
_stricmp
_strnicmp
_sys_errlist
_sys_nerr
_unlock
bsearch
calloc
clearerr
clock
div
exit
fclose
feof
ferror
fflush
fgetc
fgets
fopen
fprintf
fputc
fputs
fputwc
fputws
fread
free
freopen
fseek
ftell
fwprintf
fwrite
getc
getchar
getenv
isalnum
isalpha
iscntrl
islower
isspace
isupper
iswctype
isxdigit
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
putc
putchar
puts
qsort
raise
rand
realloc
rewind
setlocale
sprintf
strcat
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strncpy
strpbrk
strrchr
strspn
strstr
strtol
strtoul
_vsnprintf
_vsnwprintf
_wfindnext
_wfullpath
_wgetcwd
_wmkdir
_wopen
_wremove
_wrename
_wunlink
abort
atof
tolower
toupper
towlower
ungetc
vfprintf
wcscat
wcschr
wcscmp
wcscpy
wcslen
wcsrchr
wcstombs
atoi
atol
_wstati64
_stati64
_fstat
_write
_stricmp
_strdup
_setmode
_read
_open
_getpid
_getcwd
_fileno
_fdopen
_dup
_close
_access
shell32
SHGetFolderPathW
ShellExecuteW
user32
FindWindowW
GetActiveWindow
GetCapture
GetCaretPos
GetClipboardOwner
GetClipboardViewer
GetCursorPos
GetDesktopWindow
GetFocus
GetInputState
GetMessagePos
GetMessageTime
GetOpenClipboardWindow
GetProcessWindowStation
MessageBoxW
SendMessageW
ws2_32
WSACleanup
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
WSAGetLastError
WSARecv
WSARecvFrom
WSASendTo
WSAStartup
WSAWaitForMultipleEvents
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostname
getnameinfo
getpeername
getsockname
getsockopt
htonl
ioctlsocket
listen
ntohl
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket
Exports
Exports
AddMD5
EndMD5
FromCharset
GetLang_1
GetLang_2B
GetLang_2T
InitMD5
NTPtime64
ToCharset
VLC_CompileBy
VLC_CompileHost
VLC_Compiler
access_vaDirectoryControlHelper
addon_entry_Hold
addon_entry_New
addon_entry_Release
addons_manager_Delete
addons_manager_Gather
addons_manager_Install
addons_manager_LoadCatalog
addons_manager_New
addons_manager_Remove
aout_BitsPerSample
aout_ChannelExtract
aout_ChannelReorder
aout_CheckChannelExtraction
aout_CheckChannelReorder
aout_Deinterleave
aout_DeviceGet
aout_DeviceSet
aout_DevicesList
aout_FiltersAdjustResampling
aout_FiltersChangeViewpoint
aout_FiltersDelete
aout_FiltersDrain
aout_FiltersFlush
aout_FiltersNew
aout_FiltersPlay
aout_FormatPrepare
aout_FormatPrint
aout_FormatPrintChannels
aout_Interleave
aout_MuteGet
aout_MuteSet
aout_VolumeGet
aout_VolumeSet
aout_VolumeUpdate
aout_filter_RequestVout
block_Alloc
block_FifoCount
block_FifoEmpty
block_FifoGet
block_FifoNew
block_FifoPut
block_FifoRelease
block_FifoShow
block_File
block_FilePath
block_Init
block_Realloc
block_TryRealloc
block_heap_Alloc
block_mmap_Alloc
block_shm_Alloc
config_AddIntf
config_ChainCreate
config_ChainDestroy
config_ChainDuplicate
config_ChainParse
config_ChainParseOptions
config_ExistIntf
config_FindConfig
config_GetDataDir
config_GetFloat
config_GetInt
config_GetIntChoices
config_GetLibDir
config_GetPsz
config_GetPszChoices
config_GetType
config_GetUserDir
config_PutFloat
config_PutInt
config_PutPsz
config_RemoveIntf
config_ResetAll
config_SaveConfigFile
config_StringEscape
config_StringUnescape
date_Change
date_Decrement
date_Get
date_Increment
date_Init
date_Move
date_Set
decoder_AbortPictures
decoder_GetDisplayDate
decoder_GetDisplayRate
decoder_GetInputAttachments
decoder_NewAudioBuffer
decoder_NewSubpicture
demux_Delete
demux_New
demux_PacketizerDestroy
demux_PacketizerNew
demux_vaControl
demux_vaControlHelper
es_format_Clean
es_format_Copy
es_format_Init
es_format_InitFromVideo
es_format_IsSimilar
filter_AddProxyCallbacks
filter_Blend
filter_ConfigureBlend
filter_DelProxyCallbacks
filter_DeleteBlend
filter_NewBlend
filter_chain_AppendConverter
filter_chain_AppendFilter
filter_chain_AppendFromString
filter_chain_Delete
filter_chain_DeleteFilter
filter_chain_GetFmtOut
filter_chain_IsEmpty
filter_chain_MouseEvent
filter_chain_MouseFilter
filter_chain_NewVideo
filter_chain_Reset
filter_chain_SubFilter
filter_chain_VideoFilter
filter_chain_VideoFlush
fingerprinter_Create
fingerprinter_Destroy
httpd_ClientIP
httpd_FileDelete
httpd_FileNew
httpd_HandlerDelete
httpd_HandlerNew
httpd_HostDelete
httpd_MsgAdd
httpd_MsgGet
httpd_RedirectDelete
httpd_RedirectNew
httpd_ServerIP
httpd_StreamDelete
httpd_StreamHeader
httpd_StreamNew
httpd_StreamSend
httpd_StreamSetHTTPHeaders
httpd_UrlCatch
httpd_UrlDelete
httpd_UrlNew
image_Ext2Fourcc
image_HandlerCreate
image_HandlerDelete
image_Mime2Fourcc
image_Type2Fourcc
input_Close
input_Control
input_Create
input_CreateFilename
input_DecoderCreate
input_DecoderDecode
input_DecoderDelete
input_DecoderDrain
input_DecoderFlush
input_GetItem
input_Read
input_Start
input_Stop
input_item_AddInfo
input_item_AddOpaque
input_item_AddOption
input_item_AddOptions
input_item_AddSlave
input_item_Copy
input_item_CopyOptions
input_item_DelInfo
input_item_GetDuration
input_item_GetInfo
input_item_GetMeta
input_item_GetName
input_item_GetNowPlayingFb
input_item_GetTitleFbName
input_item_GetURI
input_item_HasErrorWhenReading
input_item_Hold
input_item_IsArtFetched
input_item_IsPreparsed
input_item_MergeInfos
input_item_MetaMatch
input_item_NewExt
input_item_Release
input_item_ReplaceInfos
input_item_SetDuration
input_item_SetMeta
input_item_SetName
input_item_SetURI
input_item_WriteMeta
input_item_node_AppendItem
input_item_node_AppendNode
input_item_node_Create
input_item_node_Delete
input_item_slave_GetType
input_item_slave_New
input_resource_GetAout
input_resource_HoldAout
input_resource_New
input_resource_PutAout
input_resource_Release
input_resource_ResetAout
input_resource_Terminate
input_resource_TerminateVout
input_vaControl
intf_Create
libvlc_ArtRequest
libvlc_InternalAddIntf
libvlc_InternalCleanup
libvlc_InternalCreate
libvlc_InternalDestroy
libvlc_InternalDialogClean
libvlc_InternalDialogInit
libvlc_InternalInit
libvlc_InternalKeystoreClean
libvlc_InternalKeystoreInit
libvlc_InternalPlay
libvlc_MetadataCancel
libvlc_MetadataRequest
libvlc_Quit
libvlc_SetExitHandler
mdate
module_config_free
module_config_get
module_exists
module_find
module_get_capability
module_get_help
module_get_name
module_get_object
module_get_score
module_gettext
module_list_free
module_list_get
module_need
module_provides
module_unneed
msleep
mwait
net_Accept
net_AcceptSingle
net_Connect
net_ConnectDgram
net_Gets
net_Listen
net_ListenClose
net_OpenDgram
net_Printf
net_Read
net_SetCSCov
net_Write
net_vaPrintf
picture_BlendSubpicture
picture_Clone
picture_Copy
picture_CopyPixels
picture_CopyProperties
picture_Export
picture_Hold
picture_New
picture_NewFromFormat
picture_NewFromResource
picture_Release
picture_Reset
picture_Setup
picture_fifo_Delete
picture_fifo_Flush
picture_fifo_New
picture_fifo_OffsetDate
picture_fifo_Peek
picture_fifo_Pop
picture_fifo_Push
picture_pool_Enum
picture_pool_Get
picture_pool_GetSize
picture_pool_New
picture_pool_NewExtended
picture_pool_NewFromFormat
picture_pool_Release
picture_pool_Reserve
picture_pool_Wait
plane_CopyPixels
playlist_Add
playlist_AddExt
playlist_AddInput
playlist_AssertLocked
playlist_ChildSearchName
playlist_Clear
playlist_Control
playlist_CurrentInput
playlist_CurrentInputLocked
playlist_CurrentPlayingItem
playlist_Deactivate
playlist_EnableAudioFilter
playlist_Export
playlist_GetAout
playlist_GetNodeDuration
playlist_Import
playlist_IsServicesDiscoveryLoaded
playlist_ItemGetById
playlist_ItemGetByInput
playlist_LiveSearchUpdate
playlist_Lock
playlist_MuteGet
playlist_MuteSet
playlist_NodeAddCopy
playlist_NodeAddInput
playlist_NodeCreate
playlist_NodeDelete
playlist_RecursiveNodeSort
playlist_ServicesDiscoveryAdd
playlist_ServicesDiscoveryControl
playlist_ServicesDiscoveryRemove
playlist_SetRenderer
playlist_Status
playlist_TreeMove
playlist_TreeMoveMany
playlist_Unlock
playlist_VolumeGet
playlist_VolumeSet
playlist_VolumeUp
sdp_AddAttribute
sdp_AddMedia
secstotimestr
sout_AccessOutControl
sout_AccessOutDelete
sout_AccessOutNew
sout_AccessOutRead
sout_AccessOutSeek
sout_AccessOutWrite
sout_AnnounceRegisterSDP
sout_AnnounceUnRegister
sout_EncoderCreate
sout_MuxAddStream
sout_MuxDelete
sout_MuxDeleteStream
sout_MuxFlush
sout_MuxGetStream
sout_MuxNew
sout_MuxSendBuffer
sout_StreamChainDelete
sout_StreamChainNew
spu_ChangeFilters
spu_ChangeSources
spu_ClearChannel
spu_Create
spu_Destroy
spu_PutSubpicture
spu_RegisterChannel
spu_Render
subpicture_Delete
subpicture_New
subpicture_NewFromPicture
subpicture_Update
subpicture_region_ChainDelete
subpicture_region_Copy
subpicture_region_Delete
subpicture_region_New
text_segment_ChainDelete
text_segment_Copy
text_segment_Delete
text_segment_New
text_segment_NewInheritStyle
text_style_Copy
text_style_Create
text_style_Delete
text_style_Duplicate
text_style_Merge
text_style_New
update_Check
update_Delete
update_Download
update_GetRelease
update_NeedUpgrade
update_New
us_asprintf
us_atof
us_strtod
us_strtof
us_vasprintf
utf8_fprintf
utf8_vfprintf
var_AddCallback
var_AddListCallback
var_Change
var_Create
var_DelCallback
var_DelListCallback
var_Destroy
var_FreeList
var_Get
var_GetAndSet
var_GetChecked
var_Inherit
var_InheritURational
var_LocationParse
var_Set
var_SetChecked
var_TriggerCallback
var_Type
video_format_ApplyRotation
video_format_CopyCrop
video_format_FixRgb
video_format_GetTransform
video_format_IsSimilar
video_format_Print
video_format_ScaleCropAr
video_format_Setup
video_format_TransformBy
video_format_TransformTo
vlc_CPU
vlc_GetCPUCount
vlc_Log
vlc_LogSet
vlc_UrlClean
vlc_UrlParse
vlc_UrlParseFixup
vlc_accept
vlc_accept_i11e
vlc_access_NewMRL
vlc_actions_get_id
vlc_actions_get_key_names
vlc_actions_get_keycodes
vlc_b64_decode
vlc_b64_decode_binary
vlc_b64_decode_binary_to_buffer
vlc_b64_encode
vlc_b64_encode_binary
vlc_cancel
vlc_clone
vlc_close
vlc_cond_broadcast
vlc_cond_destroy
vlc_cond_init
vlc_cond_signal
vlc_cond_timedwait
vlc_cond_wait
vlc_control_cancel
vlc_credential_clean
vlc_credential_get
vlc_credential_init
vlc_credential_store
vlc_demux_chained_ControlVa
vlc_demux_chained_Delete
vlc_demux_chained_New
vlc_demux_chained_Send
vlc_dialog_display_error
vlc_dialog_display_error_va
vlc_dialog_display_progress
vlc_dialog_display_progress_va
vlc_dialog_id_dismiss
vlc_dialog_id_get_context
vlc_dialog_id_post_action
vlc_dialog_id_post_login
vlc_dialog_id_set_context
vlc_dialog_is_cancelled
vlc_dialog_provider_set_callbacks
vlc_dialog_provider_set_ext_callback
vlc_dialog_release
vlc_dialog_update_progress
vlc_dialog_update_progress_text
vlc_dialog_update_progress_text_va
vlc_dialog_wait_login
vlc_dialog_wait_login_va
vlc_dialog_wait_question
vlc_dialog_wait_question_va
vlc_drand48
vlc_dup
vlc_epg_AddEvent
vlc_epg_Delete
vlc_epg_Duplicate
vlc_epg_New
vlc_epg_SetCurrent
vlc_epg_event_Delete
vlc_epg_event_Duplicate
vlc_epg_event_New
vlc_error
vlc_event_attach
vlc_event_detach
vlc_ext_dialog_update
vlc_fifo_DequeueAllUnlocked
vlc_fifo_DequeueUnlocked
vlc_fifo_GetBytes
vlc_fifo_GetCount
vlc_fifo_Lock
vlc_fifo_QueueUnlocked
vlc_fifo_Signal
vlc_fifo_Unlock
vlc_fifo_Wait
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.buildid Size: 512B - Virtual size: 53B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 13KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 44B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 47KB - Virtual size: 46KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/4 Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
npvlc.dll.dll windows x86
Password: infected
9c3c268956186d9011c56fc1cdc34520
Code Sign
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10/11/2006, 00:00Not After10/11/2031, 00:00SubjectCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22/10/2013, 12:00Not After22/10/2028, 12:00SubjectCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
04:07:ab:b6:4e:99:90:18:07:89:ea:cb:81:f5:f9:14Certificate
IssuerCN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before14/12/2020, 00:00Not After18/12/2023, 23:59SubjectCN=VideoLAN,O=VideoLAN,L=Paris,C=FRExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
05:88:6f:ed:dc:34:c9:c4:e1:b9:0d:cd:c2:10:88:42:41:c9:00:24:06:80:8d:50:aa:13:22:10:7f:1b:ba:23Signer
Actual PE Digest05:88:6f:ed:dc:34:c9:c4:e1:b9:0d:cd:c2:10:88:42:41:c9:00:24:06:80:8d:50:aa:13:22:10:7f:1b:ba:23Digest Algorithmsha256PE Digest Matchestrue45:65:0f:58:31:f9:c4:5d:7a:7b:70:55:29:cd:b1:54:41:0c:d8:19Signer
Actual PE Digest45:65:0f:58:31:f9:c4:5d:7a:7b:70:55:29:cd:b1:54:41:0c:d8:19Digest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
libvlc
libvlc_audio_get_channel
libvlc_audio_get_mute
libvlc_audio_get_track
libvlc_audio_get_track_count
libvlc_audio_get_track_description
libvlc_audio_get_volume
libvlc_audio_set_channel
libvlc_audio_set_mute
libvlc_audio_set_track
libvlc_audio_set_volume
libvlc_audio_toggle_mute
libvlc_chapter_descriptions_release
libvlc_errmsg
libvlc_event_attach
libvlc_event_detach
libvlc_free
libvlc_get_version
libvlc_media_add_option_flag
libvlc_media_event_manager
libvlc_media_get_meta
libvlc_media_list_add_media
libvlc_media_list_count
libvlc_media_list_index_of_item
libvlc_media_list_item_at_index
libvlc_media_list_lock
libvlc_media_list_new
libvlc_media_list_player_event_manager
libvlc_media_list_player_is_playing
libvlc_media_list_player_new
libvlc_media_list_player_next
libvlc_media_list_player_pause
libvlc_media_list_player_play
libvlc_media_list_player_play_item_at_index
libvlc_media_list_player_previous
libvlc_media_list_player_release
libvlc_media_list_player_set_media_list
libvlc_media_list_player_set_media_player
libvlc_media_list_player_set_playback_mode
libvlc_media_list_player_stop
libvlc_media_list_release
libvlc_media_list_remove_index
libvlc_media_list_unlock
libvlc_media_new_location
libvlc_media_parse_with_options
libvlc_media_player_event_manager
libvlc_media_player_get_chapter
libvlc_media_player_get_chapter_count
libvlc_media_player_get_chapter_count_for_title
libvlc_media_player_get_full_chapter_descriptions
libvlc_media_player_get_full_title_descriptions
libvlc_media_player_get_length
libvlc_media_player_get_media
libvlc_media_player_get_position
libvlc_media_player_get_rate
libvlc_media_player_get_state
libvlc_media_player_get_time
libvlc_media_player_get_title
libvlc_media_player_get_title_count
libvlc_media_player_has_vout
libvlc_media_player_new
libvlc_media_player_next_chapter
libvlc_media_player_pause
libvlc_media_player_previous_chapter
libvlc_media_player_release
libvlc_media_player_set_chapter
libvlc_media_player_set_hwnd
libvlc_media_player_set_pause
libvlc_media_player_set_position
libvlc_media_player_set_rate
libvlc_media_player_set_time
libvlc_media_player_set_title
libvlc_media_player_stop
libvlc_media_release
libvlc_media_retain
libvlc_media_tracks_get
libvlc_media_tracks_release
libvlc_new
libvlc_release
libvlc_title_descriptions_release
libvlc_track_description_list_release
libvlc_video_get_aspect_ratio
libvlc_video_get_crop_geometry
libvlc_video_get_logo_int
libvlc_video_get_marquee_int
libvlc_video_get_marquee_string
libvlc_video_get_size
libvlc_video_get_spu
libvlc_video_get_spu_count
libvlc_video_get_spu_description
libvlc_video_get_teletext
libvlc_video_get_track
libvlc_video_get_track_count
libvlc_video_get_track_description
libvlc_video_set_aspect_ratio
libvlc_video_set_callbacks
libvlc_video_set_crop_geometry
libvlc_video_set_deinterlace
libvlc_video_set_format_callbacks
libvlc_video_set_logo_int
libvlc_video_set_logo_string
libvlc_video_set_marquee_int
libvlc_video_set_marquee_string
libvlc_video_set_spu
libvlc_video_set_teletext
libvlc_video_set_track
advapi32
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
gdi32
CreateSolidBrush
DeleteObject
RestoreDC
SaveDC
SetDIBitsToDevice
kernel32
CloseHandle
CreateEventA
CreateSemaphoreW
DeleteCriticalSection
EnterCriticalSection
FormatMessageA
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
ReleaseSemaphore
SetEvent
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
msvcrt
__dllonexit
__mb_cur_max
_amsg_exit
_errno
_exit
_initterm
_iob
_lock
_onexit
_snwprintf
_stricmp
_strnicmp
_unlock
calloc
fopen
fputc
fputs
free
fwprintf
fwrite
getc
getenv
isalnum
isalpha
islower
isspace
isupper
iswctype
isxdigit
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
raise
realloc
setlocale
sprintf
strchr
strcmp
strcoll
strcpy
strerror
strftime
strlen
strncmp
strncpy
strtol
strtoul
strxfrm
abort
atof
tolower
towlower
towupper
ungetc
vfprintf
wcscoll
wcscpy
wcsftime
wcslen
wcsxfrm
atoi
_write
_strdup
_open
_close
user32
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
ClientToScreen
CreateWindowExA
DefWindowProcA
DeferWindowPos
DestroyIcon
DestroyWindow
DrawIcon
EndDeferWindowPos
EndPaint
FillRect
GetCapture
GetClassInfoA
GetClientRect
GetCursorPos
GetFocus
GetMessagePos
GetMonitorInfoA
GetParent
GetSystemMetrics
GetWindow
GetWindowLongA
GetWindowRect
GetWindowTextA
GetWindowThreadProcessId
IsDlgButtonChecked
KillTimer
LoadCursorA
LoadImageA
MessageBoxW
MonitorFromWindow
MoveWindow
OffsetRect
PostMessageA
PtInRect
RegisterClassA
ScreenToClient
SendMessageA
SetCursor
SetFocus
SetParent
SetTimer
SetWindowLongA
SetWindowPos
SetWindowsHookExA
ShowWindow
UnhookWindowsHookEx
UnregisterClassA
Exports
Exports
NP_GetEntryPoints
NP_Initialize
NP_Shutdown
Sections
.text Size: 883KB - Virtual size: 882KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 53KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.buildid Size: 512B - Virtual size: 53B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 4KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 124B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 44B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 103KB - Virtual size: 102KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/4 Size: 512B - Virtual size: 20B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ