e:\SVN出入口相机\windows\客户端\全功能多语言标准版\code\bin\OcxConfig.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
d47f086a766d253a2fe3f7f4164febf76309a911a0d31f8bafb6b158e5dc2cd9.dll
Resource
win7-20240221-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
d47f086a766d253a2fe3f7f4164febf76309a911a0d31f8bafb6b158e5dc2cd9.dll
Resource
win10v2004-20240221-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
d47f086a766d253a2fe3f7f4164febf76309a911a0d31f8bafb6b158e5dc2cd9
-
Size
2.3MB
-
MD5
c35e8f760823f4a93d49c26dc1c2d111
-
SHA1
3eec568345ab02081d195fccf9580c6f3ba5cb05
-
SHA256
d47f086a766d253a2fe3f7f4164febf76309a911a0d31f8bafb6b158e5dc2cd9
-
SHA512
fb7155f12583907ad7e7340ff3c0e3eb48bc7cf97db15347dce95c1e5bdc93aa668aebd0720a63bc4c9d1343050d46dfdbbe9410b565027f238c3a61c25b2f93
-
SSDEEP
24576:3xFAD3RF4fdgF4eOC/OwD9l4PCHBzcy+5O0FNUFRZc2s1sA3rQUc9EoZ8AV2PQp+:hxdgl7BAwzgRQylAV2PQplfAfP
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d47f086a766d253a2fe3f7f4164febf76309a911a0d31f8bafb6b158e5dc2cd9
Files
-
d47f086a766d253a2fe3f7f4164febf76309a911a0d31f8bafb6b158e5dc2cd9.dll regsvr32 windows:4 windows x86 arch:x86
54b89bf54f7df0b259184937e7a4bd20
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
netsdk
_Net_BlackWhiteCsvHead@4
Net_VehicleEvent
Net_QueryVehicleEvent
Net_QuerySLedBZSetupExt
Net_ConnCamera
Net_FindDevice
Net_SLedBZSetupExt
Net_ImportLcdFile
_Net_PlayAdInfo@8
_Net_QueryPlayAdInfo@8
Net_DeleteAdInfo
Net_QueryAdListInfo
Net_QueryAdSpaceInfo
_Net_QbMqttLedParam@8
_Net_QueryQbMqttLedParam@8
_Net_QueryMqttCustomUnit@8
_Net_OcxEncparam@8
Net_SnapParaSetup
Net_QuerySnapParaSetup
Net_QueryTrafficBayonetParam
Net_TrafficBayonetParam
Net_QueryBtLockMacAddr
Net_BtLockMacAddr
Net_BtParam
Net_QueryBtParam
Net_BtSearchMac
Net_QueryImageQualityMode
Net_ImageQualityMode
_Net_VideoPNParam@8
_Net_QueryVideoPNParam@8
_Net_DayNightModeSetup@8
_Net_QueryDayNightModeSetup@8
Net_QueryPresetCameraTimeSetup
_Net_PresetCameraTimeSetup@8
_Net_QueryMistakeLprParam@8
_Net_MistakeLprParam@8
_Net_QueryHttpExtendParam@8
_Net_SetHttpExtendParam@8
Net_SetBlackListMode
Net_LockIoOutTestInfo
Net_QueryLockIoOutInfo
Net_LockIoOutInfo
Net_QueryLockParkingSpaceLock
Net_LockParkingSpaceLock
Net_QueryLockTriggerType
Net_LockTriggerType
Net_LockRemoteCtrl
Net_SimulationTest
Net_QueryLockParkingSpace
Net_LockParkingSpace
_Net_QueryParkingVideoDetectSetup@8
_Net_ParkingVideoDetectSetup@8
Net_QueryHttpUpImageMode
Net_HttpUpImageMode
Net_QueryHighParkSpaceAttr
Net_SetHighParkSpaceAttr
Net_QueryParkSpaceAttr
Net_SetParkSpaceAttr
Net_QueryLampControl
Net_SetLampControl
Net_LampTest
Net_QueryPlotLogicCfgAttr
Net_PlotLogicCfgAttr
Net_QueryGat1400Param
Net_Gat1400Param
Net_QuerySJLedSetup
Net_SJLedSetup
Net_LcdScreenSizeSetup
Net_QueryLcdScreenSize
Net_LcdOutShowMode
Net_QueryLcdOutShowMode
_Net_QueryJGWParam@8
_Net_JGWParam@8
_Net_QueryPushCloudParam@8
_Net_PushCloudParam@8
_Net_QueryDevPlatform@8
_Net_DevPlatform@8
Net_FileDownload
Net_QueryLcdOutContentSetup
Net_LcdOutContentSetup
Net_QueryLcdInContentSetup
Net_LcdInContentSetup
Net_QueryLcdSetup
Net_LcdSetup
Net_FuntionListRsp
Net_OpenallParam
Net_QueryOpenallParam
_Net_RestoreParam@8
_Net_QueryRestoreParam@8
_Net_ImportCA@8
Net_ImageWDR
Net_QueryDevQuadrillage
Net_SetCloudParam
Net_QueryCloudParam
Net_ApnSetup
Net_QueryApnSetup
Net_QueryT4GInfoParam
Net_QueryXWCarinParam
Net_SetXWCarinParam
Net_SLedTfgSetup
Net_QuerySLedTfgSetup
Net_AudioTalkBack
Net_StopTalk
Net_StartTalk
Net_QueryMediaVol
Net_QueryAudioVol
Net_MediaVolSetup
Net_SetAudioVol
Net_SetParkOpenManual
Net_QueryParkOpenManual
Net_SetVideoRotate
Net_ParkNumSetup
Net_QueryParkNumSetup
Net_SLedSetupExt
Net_QuerySLedSetupExt
Net_TwoEncpyptionQuery
_Net_QueryTcpClientInfo@8
Net_OffLinePayTest
Net_SetHttpSetupExt
Net_QueryHttpSetupExt
Net_SetHttpPushSetup
Net_QueryHttpPushSetup
Net_SetPushTargetSetup
Net_QueryPushTargetSetup
Net_SetGB28181Priv
Net_QueryGB28181Priv
Net_ExportRePlate
Net_ImportRePlate
Net_QueryProduceMod
Net_QueryAssMerge
Net_SetAssDistrict
Net_QueryAssDistrict
Net_AssCameraIpSearch
Net_SetAssCamera
Net_QueryAssCamera
Net_SetDetectPlateType
Net_QueryDetectPlateType
Net_SetScreenSetup
Net_QueryScreenSetup
Net_SetParkLedManual
Net_QueryParkLedManual
Net_ImageEvSetup
Net_QueryImageEvSetup
Net_SetVideoAve
Net_QueryVideoAve
Net_MulticastSetup
Net_QueryMulticastSetup
Net_SyncConfigByMulticast
Net_GetPresentVehInfoAsCSV
Net_SetGateAutoOpen
Net_QueryGateAutoOpen
Net_SetOffLinePayMode
Net_QueryOffLinePayMode
Net_SetOffLinePayRule
Net_QueryOffLinePayRule
Net_ModifyUserPassword
Net_OneKeyFocusEx
Net_OneKeyFocus
Net_AssLensControl
Net_LensControl
_Net_QueryParkLedLightSetupEx@8
_Net_ParkLedLightSetupEx@8
Net_QueryParkLedLightSetup
Net_ParkLedLightSetup
Net_LedDcSetup
Net_Log
Net_QueryLedDcSetup
Net_LedSetupEx
Net_QueryLedSetupEx
Net_LedSetup
Net_QueryLedSetup
_Net_SLedSetup_WS@8
_Net_QuerySLedSetup_WS@8
Net_SLedSetup
Net_QuerySLedSetup
Net_QueryRebootTimeSetup
Net_RebootTimeSetup
Net_RebootCamera
Net_SetupRestore
Net_ReStoreConfig
Net_StoreConfig
Net_ExportLogEx
Net_DevQuadrillage
_Net_QueryMainAssistInfo@8
Net_QueryImageWDR
_Net_MainAssistInfo@8
Net_ExportConfig
Net_ImportConfig
Net_FileUpload
Net_FileUpdate
Net_QueryDemoSetup
Net_DemoSetup
Net_DiskFomat
Net_QueryHardInfo
Net_QueryStorageSetup
Net_StorageSetup
Net_QueryWLFuzzyMatchMode
Net_SetWLFuzzyMatchMode
Net_QueryWhiteListMode
Net_SetWhiteListMode
Net_BlackWhiteListSend
Net_SendBlackWhiteListByMess
Net_DeleteBlackWhiteList
Net_DeleteAllBlackWhiteList
Net_ExportWhiteListTemplate
Net_GetBlackWhiteListAsCSV
Net_GetBlackWhiteList
Net_QueryParkGatePulse
Net_ParkGatePulseSetup
Net_QueryVehicleVAFunSetupEX
Net_VehicleVAFunSetupEX
Net_QueryVehicleVAFunSetup
Net_VehicleVAFunSetup
Net_QueryAssVideoParaSetup
Net_AssVideoParaSetup
Net_QueryViceVideoParaSetup
Net_ViceVideoParaSetup
Net_QueryVideoParaSetup
Net_VideoParaSetup
_Net_QueryPicSubtitleSetup@8
_Net_PicSubtitleSetup@8
Net_QueryPicOsdSetup
Net_PicOsdSetup
Net_QueryVideoSubtitleSetup
Net_VideoSubtitleSetup
Net_QueryImageQualitySetup
Net_ImageQualitySetup
Net_QueryViceVideoCodeSetup
Net_ViceVideoCodeSetup
Net_QueryVideoCodeSetup
Net_VideoCodeSetup
Net_QueryVideoDetectSetup
Net_VideoDetectSetup
Net_QueryLoopDetectSetup
Net_LoopDetectSetup
Net_QueryDetectModeSetup
Net_DetectModeSetup
Net_QueryRS485Setup
Net_RS485Setup
Net_QueryPicTransPortSetup
Net_PicTransPortSetup
Net_QueryFTPSetup
Net_FTPSetup
Net_QueryMACSetup
Net_QueryNETSetup
Net_NETSetup
Net_QueryDevSetup
Net_DevInfoSetup
Net_QuerySntpSetup
Net_SntpSetup
Net_QueryTimeSetup
Net_TimeSetup
Net_QueryAssCameraStatus
Net_QueryVideoState
Net_QueryConnState
Net_ImageSnap
Net_SaveJpgFile
Net_StopRecord
Net_StartRecordEx
Net_SetDrawFunCallBack
Net_AddPlayWindow
Net_ShowPlateRegion
Net_StartVideo
Net_QuerySysVersion
Net_ConnCamera2
Net_AddAssCamera
Net_RegFileUpdateProgress
Net_BlackWhiteListSendReportMess
Net_RegImageRecvEx2
Net_DelCamera
Net_DisConnCamera
Net_ConnCameraEx
Net_RegReportMessEx
Net_AddCamera
Net_UNinit
Net_StopVideo
Net_RegTalkConnStateCallBack
Net_Init
Net_ModifyDeviceIpByMac
zlibhelper
Folder2Zip
kernel32
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentDirectoryA
GetFullPathNameA
GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetTimeZoneInformation
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
GetModuleFileNameA
HeapCreate
HeapDestroy
VirtualFree
SetEnvironmentVariableA
GetConsoleCP
GetStartupInfoA
GetStdHandle
SetHandleCount
GetFileType
SetStdHandle
HeapSize
ExitProcess
RaiseException
RtlUnwind
GetProcessHeap
GetCommandLineA
FindFirstFileA
GetDriveTypeA
GetSystemTimeAsFileTime
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapFree
HeapAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateThread
ExitThread
GetProfileIntW
FindResourceExW
GetShortPathNameW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
GlobalFlags
SetErrorMode
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetUserDefaultLCID
IsDBCSLeadByte
InterlockedIncrement
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
GetFileTime
GetFileSize
LocalAlloc
FileTimeToLocalFileTime
GetCurrentProcessId
InterlockedDecrement
GetVersionExW
GetModuleHandleA
FileTimeToSystemTime
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
lstrcmpW
GetModuleHandleW
GetVersionExA
SetLastError
GlobalSize
FormatMessageW
LocalFree
MulDiv
GetTickCount
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
FindClose
FindNextFileW
FindFirstFileW
GetLastError
GetPrivateProfileIntW
GetLongPathNameW
GetModuleFileNameW
CopyFileW
SetFileAttributesW
RemoveDirectoryW
CreateDirectoryW
GetFileAttributesW
CreateProcessW
lstrcpyW
FreeLibrary
GetProcAddress
LoadLibraryW
GlobalUnlock
GlobalFree
GlobalLock
FreeResource
GlobalAlloc
Sleep
WaitForSingleObject
WritePrivateProfileStringW
GetPrivateProfileStringW
DeleteCriticalSection
InitializeCriticalSection
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
CreateFileW
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection
DeleteFileW
GetLocalTime
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
CloseHandle
TerminateThread
lstrlenA
MultiByteToWideChar
lstrlenW
GetConsoleMode
CreateFileA
user32
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageW
TrackPopupMenu
GetKeyState
GetScrollRange
GetScrollPos
SetForegroundWindow
GetMenu
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
EqualRect
GetScrollInfo
GetDlgCtrlID
DefWindowProcW
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetMenuState
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
RemoveMenu
MoveWindow
SetParent
SetRectEmpty
SetLayeredWindowAttributes
FindWindowW
SetWindowRgn
GetMessageW
PostThreadMessageW
GrayStringW
DrawTextExW
TabbedTextOutW
UpdateWindow
SetFocus
ReleaseDC
GetDC
GetClientRect
SetWindowLongW
GetWindowLongW
CallWindowProcW
TrackMouseEvent
CopyRect
GetAsyncKeyState
SetTimer
KillTimer
IsWindowVisible
SetCursor
ClipCursor
ReleaseCapture
SetCapture
SetWindowPos
LoadCursorW
MapWindowPoints
GetMessagePos
ShowWindow
GetFocus
DrawFocusRect
PtInRect
ValidateRect
GetSysColor
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetCursorPos
ClientToScreen
DrawMenuBar
ModifyMenuW
GetSubMenu
GetDCEx
GetTabbedTextExtentA
DestroyIcon
CharUpperW
GetDialogBaseUnits
LoadMenuW
GetSystemMetrics
OffsetRect
CallNextHookEx
GetClassNameW
FillRect
GetParent
InvalidateRect
DrawTextW
IsRectEmpty
GetWindowRect
EnableWindow
PostMessageW
GetSysColorBrush
SendDlgItemMessageA
UnregisterClassW
LockWindowUpdate
EnumChildWindows
RegisterClipboardFormatW
SetRect
SendMessageW
CreateMenu
IsWindow
RemovePropW
GetPropW
SetPropW
GetClassLongW
SetWindowsHookExW
GetCapture
IsChild
FrameRect
WinHelpW
DrawEdge
TranslateMessage
PostQuitMessage
WindowFromPoint
GetWindowThreadProcessId
DestroyMenu
EndPaint
BeginPaint
GetWindowDC
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
IsWindowEnabled
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
InflateRect
UnregisterClassA
gdi32
GetTextExtentPoint32W
CreateDIBSection
SetDIBColorTable
GetObjectW
MoveToEx
LineTo
TextOutW
Polygon
GetTextColor
CreateRoundRectRgn
SelectClipRgn
GetTextMetricsW
GetTextExtentPointW
PtVisible
RectVisible
ExtTextOutW
Escape
CreateFontIndirectW
CreatePolygonRgn
PtInRegion
GetDeviceCaps
CopyMetaFileW
CreateDCW
GetClipBox
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetROP2
SetStretchBltMode
SetMapMode
CreateFontW
CreateRectRgn
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
CreatePatternBrush
CreateRectRgnIndirect
PatBlt
SetRectRgn
CombineRgn
LPtoDP
CreateMetaFileW
CloseMetaFile
DeleteMetaFile
GetTextAlign
EnumFontFamiliesExW
UnrealizeObject
CreateCompatibleBitmap
GetDIBColorTable
StretchBlt
BitBlt
CreateCompatibleDC
DeleteDC
Ellipse
Rectangle
GetStockObject
CreateSolidBrush
SetTextColor
CreatePen
SetBkMode
SelectObject
DeleteObject
msimg32
AlphaBlend
GradientFill
TransparentBlt
comdlg32
GetFileTitleW
winspool.drv
DocumentPropertiesW
OpenPrinterW
ClosePrinter
advapi32
RegDeleteKeyW
RegSetValueW
RegDeleteValueW
RegSetValueExW
RegQueryValueW
RegCreateKeyW
RegCloseKey
RegEnumKeyW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyW
shell32
SHGetPathFromIDListW
ExtractIconW
SHBrowseForFolderW
ShellExecuteExW
ShellExecuteW
comctl32
InitializeFlatSB
FlatSB_EnableScrollBar
shlwapi
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
StrToIntExW
StrCmpLogicalW
PathFileExistsW
PathIsUNCW
ole32
StringFromGUID2
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CreateStreamOnHGlobal
CoCreateInstance
CoTaskMemFree
ReadFmtUserTypeStg
ReleaseStgMedium
CoTaskMemAlloc
StringFromCLSID
OleDuplicateData
CoRegisterClassObject
CoRevokeClassObject
CreateDataCache
CoDisconnectObject
CreateOleAdviseHolder
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleSaveToStream
CreateDataAdviseHolder
ReadClassStm
OleLoadFromStream
oleaut32
SysAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
LoadRegTypeLi
VariantClear
VariantChangeType
VariantInit
SysStringLen
SysFreeString
SysStringByteLen
RegisterTypeLi
LoadTypeLi
OleCreatePropertyFrame
VariantCopy
OleCreatePictureIndirect
OleCreateFontIndirect
OleLoadPicture
SysAllocString
urlmon
URLDownloadToFileW
gdiplus
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdipDisposeImage
GdipAlloc
GdipCreateBitmapFromStream
GdipFree
GdipCreateBitmapFromFile
GdipCreateFromHDC
GdipSetSmoothingMode
GdipFillEllipseI
GdipCreateSolidFill
GdipDeleteBrush
GdiplusStartup
GdiplusShutdown
GdipCloneImage
ws2_32
gethostbyname
inet_addr
wininet
InternetConnectW
FtpFindFirstFileW
InternetSetStatusCallbackW
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
InternetFindNextFileW
FtpGetCurrentDirectoryW
FtpSetCurrentDirectoryW
DeleteUrlCacheEntryW
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 352KB - Virtual size: 350KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 360KB - Virtual size: 356KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 132KB - Virtual size: 131KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ