bc030825656933f479f10064236f3a0c

Sharing

Copy URL Twitter E-mail

General

Target

bc030825656933f479f10064236f3a0c
Size

216KB
MD5

bc030825656933f479f10064236f3a0c
SHA1

8068a603435a69b324786c33f982a085c9cfbd39
SHA256

8f55dba3e61d47a3dc7eeb3a44cac2f32d2f3502676c4d7f40669d36a2640c1b
SHA512

b8b1c94ead09110f22fe2503e7400dd947d05282298c9d46344309f6c68d43d77857cd3bd293a68db72498691fa48207e3a3197571b4f6d683af8150c4632193
SSDEEP

3072:NPJzVNbFV/bttT10Fck2/MWE8AHejlLtn05J/p2FJb6ars:nzzbbGl20WE8AHCvsRYFJbk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc030825656933f479f10064236f3a0c

Files

bc030825656933f479f10064236f3a0c
.dll windows:4 windows x86 arch:x86

59a775ebb8ab3d9a1c80de94dc398489

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

aferrorhandle

??0CafErrorInfo@@QAE@XZ
??1CafErrorInfo@@UAE@XZ

afdvdclient

??1CafServiceObjectList@@UAE@XZ
?afRemoveAllServiceObject@CafServiceObjectList@@UAE_NPAUCafErrorInfo@@@Z
?afGetServiceObjectByIndex@CafServiceObjectList@@UAE_NPAPAVCafServiceObject@@HPAUCafErrorInfo@@@Z
??0CafServiceObjectList@@QAE@XZ
?afFreeObject@CafObjectFactory@@SA_NPAPAVCafServiceObject@@PAUCafErrorInfo@@@Z
?afGetTotalCount@CafServiceObjectList@@UAE_NPAHPAUCafErrorInfo@@@Z

afcommonutility2

?afTranslateHDDisc@CafGlobalAPI2@@SA_NPAVCafServiceObject@@PAPAV2@PAUCafErrorInfo@@@Z
?afGetObjectIDString@CafGlobalAPI2@@SA_NPAVCafServiceObject@@_NPADPAUCafErrorInfo@@@Z

gdiplus

GdipCloneBitmapAreaI
GdipBitmapUnlockBits
GdipDisposeImage
GdipFree
GdipCloneImage
GdipAlloc
GdipCreateBitmapFromGdiDib
GdipGetImageHeight
GdipCreateBitmapFromScan0
GdiplusShutdown
GdiplusStartup
GdipBitmapLockBits
GdipGetImageWidth

udvdbuf

?Alloc@CDVDBuf@@QAEHHHH@Z
??0CDVDBuf@@QAE@XZ
?FillOneColor@CDVDBuf@@QAEHPAE@Z
?ConvertFromAIK@CDVDDIB@@QAEJPAXHH@Z
??1CDVDBuf@@UAE@XZ
?Free@CDVDDIB@@QAEXXZ
??1CDVDDIB@@QAE@XZ
?Alloc@CDVDDIB@@QAEXHHH@Z
??0CDVDDIB@@QAE@XZ

mfc42

ord800
ord1601
ord539
ord5572
ord2915
ord940
ord6877
ord4202
ord537
ord926
ord858
ord922
ord5710
ord4129
ord6648
ord2764
ord6282
ord6283
ord1168
ord1253
ord342
ord1182
ord823
ord825

msvcrt

_purecall
_makepath
_splitpath
_mbscmp
_beginthreadex
_ftol
_except_handler3
?terminate@@YAXXZ
free
_initterm
malloc
_adjust_fdiv
__CxxFrameHandler
wcscmp

kernel32

GetFileSize
GetProcAddress
ReadFile
CloseHandle
CreateFileA
LoadLibraryA
VirtualAlloc
SetEvent
WaitForSingleObject
CreateMutexA
Sleep
GlobalLock
GlobalUnlock
CreateEventA
InterlockedDecrement
InterlockedIncrement
lstrlenW
WideCharToMultiByte
GetModuleFileNameA
MultiByteToWideChar

user32

ClipCursor
SetCursorPos
SetCursor
ShowCursor

ole32

CoInitialize
CoUninitialize

oleaut32

SysAllocString
SysFreeString
SysStringLen
SysAllocStringLen

utimecode

?fnSetTimeCode@CuTimeCode@@QAEHHHHHW4TimeBase@@@Z
?fnGetTimeCode@CuTimeCode@@QBEXAAH000W4TimeBase@@@Z

Exports

Exports

??4CDVDGifImageFile@@QAEAAV0@ABV0@@Z
??BCDVDDIB@@QBEPAXXZ
?CreateprvHDIIFileCacheMgr@@YA_NPAPAUIprvHDIIFileCacheMgr@@@Z
?CreateprvHDIIPlaylistMgr@@YA_NPAPAUIprvHDIIPlylstMgr@@@Z
?GetBuffer@CDVDDIB@@QAEPAXXZ

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59a775ebb8ab3d9a1c80de94dc398489

Headers

File Characteristics

Imports

aferrorhandle

afdvdclient

afcommonutility2

gdiplus

udvdbuf

mfc42

msvcrt

kernel32

user32

ole32

oleaut32

utimecode

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 81KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 436B

.rsrc Size: 104KB - Virtual size: 100KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 84KB - Virtual size: 81KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 436B

.rsrc
Size: 104KB - Virtual size: 100KB

.reloc
Size: 8KB - Virtual size: 6KB