avicap32[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

avicap32.dll
Size

68KB
MD5

99feba3327e13ca5cc9412dc56c67311
SHA1

1608d14aeb084f7274b0c43f0675ceda904ca9b2
SHA256

6b55044f470b4e9649c7f941855feb7e99b2ff6b34c211ca276cf45c634f97ad
SHA512

cda15eb916b3823d748a5d214f18a69550e783c619e80630416049a68b7a0de4da3c6ab245009d1b654a8c03f6f029924a96c844b656c2cc555c41fab57274fc
SSDEEP

1536:yVJ/TdAJgOAD/FXo4YMRhacit9tgFPTKay:yVRWJgOAjFXhZRhadPgFPO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
avicap32.dll

Files

avicap32.dll
.dll windows:10 windows x86 arch:x86

0a42828b1fd6f66ea9c00d06dfef96ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

avicap32.pdb

Imports

msvcrt

memmove
_vsnwprintf
_except_handler4_common
_initterm
malloc
free
_amsg_exit
_XcptFilter
atoi
_vsnprintf
_ftol2
memcpy
memset

msvfw32

ICSeqCompressFrame
DrawDibBegin
ICImageDecompress
DrawDibClose
ICCompressorFree
DrawDibRealize
DrawDibOpen
ICCompressorChoose
DrawDibDraw
DrawDibGetPalette
ICSeqCompressFrameEnd
ICSeqCompressFrameStart

api-ms-win-core-heap-l2-1-0

GlobalAlloc
LocalLock
LocalAlloc
GlobalFree
LocalFree
LocalUnlock

api-ms-win-core-version-l1-1-1

GetFileVersionInfoSizeW
GetFileVersionInfoW

api-ms-win-core-string-obsolete-l1-1-0

lstrlenA
lstrcmpiW
lstrlenW

api-ms-win-core-libraryloader-l1-2-0

FreeLibrary
DisableThreadLibraryCalls
GetProcAddress
LoadStringW
GetModuleHandleW
LoadStringA
GetModuleFileNameW

api-ms-win-core-version-l1-1-0

VerQueryValueW

api-ms-win-core-string-l1-1-0

MultiByteToWideChar
WideCharToMultiByte

api-ms-win-core-heap-obsolete-l1-1-0

GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle

api-ms-win-mm-time-l1-1-0

timeGetTime

api-ms-win-core-memory-l1-1-0

VirtualAlloc
VirtualFree

api-ms-win-core-processthreads-l1-1-0

GetCurrentThread
GetThreadPriority
CreateThread
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
SetThreadPriority

api-ms-win-core-synch-l1-1-0

LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
SetEvent
CreateEventW
DeleteCriticalSection
InitializeCriticalSection

api-ms-win-core-sysinfo-l1-1-0

GetVersionExW
GlobalMemoryStatusEx
GetSystemTimeAsFileTime
GetSystemInfo
GetLocalTime
GetTickCount

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-profile-l1-1-0

QueryPerformanceFrequency
QueryPerformanceCounter

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-largeinteger-l1-1-0

MulDiv

api-ms-win-core-file-l1-1-0

WriteFile
GetFileAttributesW
GetFullPathNameW
GetFileSize
GetDiskFreeSpaceW
DeleteFileW
CreateFileW
SetFilePointer

api-ms-win-core-errorhandling-l1-1-0

UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLastError

api-ms-win-core-libraryloader-l1-2-1

LoadLibraryW

api-ms-win-core-io-l1-1-0

GetOverlappedResult

api-ms-win-core-registry-l1-1-0

RegQueryValueExW
RegCloseKey
RegQueryValueExA

api-ms-win-core-registry-l2-1-0

RegOpenKeyA
RegEnumKeyW
RegOpenKeyW
RegCreateKeyW

api-ms-win-core-heap-l1-1-0

HeapAlloc
HeapFree
GetProcessHeap

api-ms-win-core-localization-l1-2-0

GetACP

api-ms-win-core-privateprofile-l1-1-0

GetPrivateProfileStringW

gdi32

SelectPalette
SetWindowOrgEx
RealizePalette
GetObjectW
GetNearestPaletteIndex
GetStockObject
GetPaletteEntries
PatBlt
SelectObject
DeleteObject
CreatePalette
GetClipBox
GetDCOrgEx
GetSystemPaletteEntries
GetDeviceCaps

kernel32

LocalHandle

user32

PostMessageW
IsWindow
DispatchMessageW
TranslateMessage
DefWindowProcW
GetParent
EqualRect
SendMessageW
MsgWaitForMultipleObjects
SetTimer
ClientToScreen
GetClipboardData
SetWindowLongW
KillTimer
LoadCursorW
RegisterClassW
EndPaint
MessageBeep
PeekMessageW
GetDC
MessageBoxW
GetAsyncKeyState
OpenClipboard
CloseClipboard
EmptyClipboard
SetClipboardData
SetCursor
GetClientRect
SetRect
UpdateWindow
InvalidateRect
ReleaseDC
GetWindowLongW
CreateWindowExW
UnregisterClassW
GetClassInfoW
BeginPaint

winmm

mmioWrite
waveInClose
waveInStop
mmioOpenW
waveInAddBuffer
mmioSeek
mmioClose
mmioRead
mmioCreateChunk
mmioAscend
mmioDescend
mmioFlush
waveOutGetNumDevs
mciSendStringW
CloseDriver
OpenDriver
SendDriverMessage
waveInStart
waveInOpen
waveInUnprepareHeader
waveInReset
waveInPrepareHeader

Exports

Exports

AppCleanup
capCreateCaptureWindowA
capCreateCaptureWindowW
capGetDriverDescriptionA
capGetDriverDescriptionW
videoThunk32

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a42828b1fd6f66ea9c00d06dfef96ed

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

msvfw32

api-ms-win-core-heap-l2-1-0

api-ms-win-core-version-l1-1-1

api-ms-win-core-string-obsolete-l1-1-0

api-ms-win-core-libraryloader-l1-2-0

api-ms-win-core-version-l1-1-0

api-ms-win-core-string-l1-1-0

api-ms-win-core-heap-obsolete-l1-1-0

api-ms-win-mm-time-l1-1-0

api-ms-win-core-memory-l1-1-0

api-ms-win-core-processthreads-l1-1-0

api-ms-win-core-synch-l1-1-0

api-ms-win-core-sysinfo-l1-1-0

api-ms-win-core-synch-l1-2-0

api-ms-win-core-profile-l1-1-0

api-ms-win-core-handle-l1-1-0

api-ms-win-core-largeinteger-l1-1-0

api-ms-win-core-file-l1-1-0

api-ms-win-core-errorhandling-l1-1-0

api-ms-win-core-libraryloader-l1-2-1

api-ms-win-core-io-l1-1-0

api-ms-win-core-registry-l1-1-0

api-ms-win-core-registry-l2-1-0

api-ms-win-core-heap-l1-1-0

api-ms-win-core-localization-l1-2-0

api-ms-win-core-privateprofile-l1-1-0

gdi32

kernel32

user32

winmm

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 54KB

.data Size: 1024B - Virtual size: 2KB

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 55KB - Virtual size: 54KB

.data
Size: 1024B - Virtual size: 2KB

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB