cd7ccc4b6d45048581585d50a4aaa570be538035a7dcd2ad11aa7893804d4205

Sharing

Copy URL

Twitter E-mail

General

Target

cd7ccc4b6d45048581585d50a4aaa570be538035a7dcd2ad11aa7893804d4205
Size

4.5MB
MD5

6040f7bf245e781c23d8dec4005e334f
SHA1

d2544c11d1f49d9a79e2b4f60368b017a96e041b
SHA256

cd7ccc4b6d45048581585d50a4aaa570be538035a7dcd2ad11aa7893804d4205
SHA512

61c4bc2c50e5878f7c706232be716abfd96f02f796cf276cbd99a66ada37ebf54c87bbcb2186e4ee53acd86aafbe17d5f1aed6cb91e124348cd56f2e9cbefb41
SSDEEP

49152:0lJb2b5t/I61/EF3uhGKqN81L4XoXpd9MG8oe2KtBMsuVqpyhlqduf:wuH/7xs3vJ81LooZ+tBM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd7ccc4b6d45048581585d50a4aaa570be538035a7dcd2ad11aa7893804d4205

Files

cd7ccc4b6d45048581585d50a4aaa570be538035a7dcd2ad11aa7893804d4205
.dll windows:6 windows x86 arch:x86

c88c6cff0201ca918286ed41e124ad90

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\VS\sacddecoder\foo_input_sacd\Release\foo_dsd_processor.pdb

Imports

shared

_GetInfiniteWaitEvent@0
_uFormatSystemErrorMessage@8
_uPrintCrashInfo_OnEvent@8
_uBugCheck@0
_uExceptFilterProc@4

kernel32

GetSystemTimeAsFileTime
AcquireSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockShared
ReleaseSRWLockExclusive
MulDiv
VerifyVersionInfoW
VerSetConditionMask
LoadLibraryExW
GetVersionExW
lstrlenW
GetTickCount
GlobalFree
GlobalAlloc
GlobalSize
GetCurrentProcess
TerminateThread
QueryPerformanceCounter
GetCurrentProcessId
DisableThreadLibraryCalls
FormatMessageA
LoadLibraryA
GetThreadLocale
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
LoadLibraryExA
VirtualFree
VirtualAlloc
IsDebuggerPresent
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
ResetEvent
SetEvent
WaitForSingleObject
CreateEventW
GlobalUnlock
GlobalLock
CloseHandle
OutputDebugStringW
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
InterlockedPopEntrySList
HeapAlloc
FindResourceW
LoadResource
FindResourceExW
RaiseException
HeapReAlloc
LockResource
GetLastError
HeapSize
GetCurrentThreadId
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
SetLastError
HeapFree
SizeofResource
EncodePointer
CreateThread
InitializeSListHead

user32

SetScrollInfo
UpdateWindow
SetScrollPos
ScrollWindowEx
InvalidateRgn
GetNextDlgTabItem
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
GetMessagePos
TrackMouseEvent
IsRectEmpty
GetFocus
MessageBeep
NotifyWinEvent
AdjustWindowRect
GetClipboardData
DrawFocusRect
DrawTextW
RegisterWindowMessageW
GetWindow
PtInRect
DrawFrameControl
GetDlgCtrlID
OffsetRect
CopyRect
GetWindowRect
GetMenuBarInfo
InflateRect
IntersectRect
SystemParametersInfoW
ReleaseDC
GetWindowDC
SetWindowPos
SetRectEmpty
InvalidateRect
RedrawWindow
GetCursorPos
BeginPaint
GetClientRect
WindowFromPoint
CloseClipboard
OpenClipboard
GetKeyState
SetWindowTextW
GetClassNameW
GetParent
CharLowerW
GetSysColor
GetWindowLongW
GetWindowTextLengthW
SetGestureConfig
CloseGestureInfoHandle
GetGestureInfo
CreateDialogParamW
DefWindowProcW
CallWindowProcW
ScreenToClient
PostMessageW
SetLayeredWindowAttributes
GetScrollInfo
SetTimer
SetCursor
SetCapture
KillTimer
IsWindowEnabled
SetFocus
MonitorFromPoint
DestroyWindow
GetMenuItemCount
CreateWindowExW
SendMessageW
UnregisterClassW
CreatePopupMenu
RegisterClassExW
TrackPopupMenu
ShowWindow
IsWindow
GetMonitorInfoW
ClientToScreen
SendDlgItemMessageW
MapWindowPoints
GetDC
GetIconInfo
GetMenuStringW
FillRect
FrameRect
EndPaint
DestroyMenu
LoadCursorW
SetWindowLongW
GetDlgItem
AppendMenuW
GetClassInfoExW
EnableWindow
GetWindowTextW
DrawIconEx
DrawIcon

gdi32

SetDCBrushColor
SetDCPenColor
ExtTextOutW
LineTo
MoveToEx
SetBkMode
GetTextColor
GetBkColor
CreateFontIndirectW
GetObjectW
CreateCompatibleDC
LPtoDP
SaveDC
RestoreDC
SetBkColor
SetWindowOrgEx
IntersectClipRect
CreateCompatibleBitmap
SetViewportOrgEx
BitBlt
GetTextExtentPoint32W
CombineRgn
CreateRectRgnIndirect
CreatePolygonRgn
FrameRgn
FillRgn
CreateRectRgn
GetCurrentObject
OffsetRgn
CreatePen
GetDeviceCaps
SetTextColor
SelectObject
DeleteObject
DeleteDC
OffsetWindowOrgEx
GetTextMetricsW
GetStockObject

shell32

ord74

ole32

CoCreateInstance
CreateStreamOnHGlobal
RegisterDragDrop
RevokeDragDrop
ReleaseStgMedium
DoDragDrop

oleaut32

VariantClear
SysAllocString
VariantInit

msvcp140

?_Xlength_error@std@@YAXPBD@Z
?_Xbad_function_call@std@@YAXXZ

comctl32

ord410
ord413
ImageList_DrawEx
ImageList_GetIconSize

uxtheme

IsThemePartDefined
CloseThemeData
GetThemePartSize
OpenThemeData
DrawThemeTextEx
DrawThemeBackground
SetWindowTheme

msimg32

GradientFill

dwmapi

DwmSetWindowAttribute

oleacc

AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdiplusStartup
GdiplusShutdown
GdipDrawLineI
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipDeletePen
GdipCreatePen1

vcruntime140

__current_exception_context
__current_exception
__std_type_info_destroy_list
memcpy
memcmp
_except_handler4_common
memset
_CxxThrowException
memmove
__CxxFrameHandler3
__std_exception_destroy
__std_exception_copy
_purecall
__std_terminate
strstr

api-ms-win-crt-string-l1-1-0

strlen
_wcsicmp
wcsnlen
_wcsnicmp
strncpy
wmemcpy_s

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswprintf
__acrt_iob_func
__stdio_common_vsprintf
__stdio_common_vswprintf_s
__stdio_common_vfprintf

api-ms-win-crt-heap-l1-1-0

free
_callnewh
malloc
_recalloc
_expand
realloc

api-ms-win-crt-convert-l1-1-0

_wtoi

api-ms-win-crt-runtime-l1-1-0

exit
_crt_atexit
_errno
_execute_onexit_table
_invalid_parameter_noinfo
_register_onexit_function
_initialize_onexit_table
_invalid_parameter_noinfo_noreturn
_initialize_narrow_environment
_initterm_e
_initterm
terminate
_seh_filter_dll
_configure_narrow_argv
_cexit

api-ms-win-crt-utility-l1-1-0

rand
srand

api-ms-win-crt-math-l1-1-0

lround
__libm_sse2_pow
_libm_sse2_pow_precise

api-ms-win-crt-environment-l1-1-0

getenv

Exports

Exports

foobar2000_get_interface

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

IPPCODE
Size: 735KB - Virtual size: 734KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.movehcs
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c88c6cff0201ca918286ed41e124ad90

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

shared

kernel32

user32

gdi32

shell32

ole32

oleaut32

msvcp140

comctl32

uxtheme

msimg32

dwmapi

oleacc

gdiplus

vcruntime140

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-environment-l1-1-0

Exports

Exports

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

IPPCODE Size: 735KB - Virtual size: 734KB

.rdata Size: 1.2MB - Virtual size: 1.2MB

.data Size: 16KB - Virtual size: 21KB

_RDATA Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 70KB - Virtual size: 69KB

.movehcs Size: 512B - Virtual size: 4KB

.text
Size: 2.5MB - Virtual size: 2.5MB

IPPCODE
Size: 735KB - Virtual size: 734KB

.rdata
Size: 1.2MB - Virtual size: 1.2MB

.data
Size: 16KB - Virtual size: 21KB

_RDATA
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 70KB - Virtual size: 69KB

.movehcs
Size: 512B - Virtual size: 4KB