4c3a3e4380903cda18531681fc454587709834f994a25a52e4df9a7476d62fc8

Sharing

Copy URL

Twitter E-mail

General

Target

4c3a3e4380903cda18531681fc454587709834f994a25a52e4df9a7476d62fc8
Size

6.1MB
MD5

bc432156f3e11db0b7c1dcd25bb6e954
SHA1

59f8e085e3cd77d6deebce756e477a660fd38272
SHA256

4c3a3e4380903cda18531681fc454587709834f994a25a52e4df9a7476d62fc8
SHA512

7db160536968143b3808b7bebb3328782c2d44af1ea22ef995f16a99786338c7a799beca5ae8e1d9040844fc1d520270abe4684c4db1289100d3923bdd6bcc1c
SSDEEP

98304:M8z0uacvBeyxwGWTj3+NsaTm2tYdOSipKZ0hzJ:M8z0u3vlw/csA7dSi4EJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c3a3e4380903cda18531681fc454587709834f994a25a52e4df9a7476d62fc8

Files

4c3a3e4380903cda18531681fc454587709834f994a25a52e4df9a7476d62fc8
.exe windows:6 windows x86 arch:x86

460b3dc263252f64fa9153c88686e687

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

X:\LedPlayer\temp\ReleaseInfo\LEDPlayer.pdb

Imports

uxtheme

IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
DrawThemeText
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
EnableThemeDialogTexture

kernel32

SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
GetTimeFormatW
GetDateFormatW
GetACP
GetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
GetCommandLineW
GetCommandLineA
VirtualQuery
VirtualAlloc
GetSystemInfo
GetFileType
SetStdHandle
FreeLibraryAndExitThread
ExitThread
CreateThread
GetModuleHandleExW
ReadConsoleW
RtlUnwind
GetCPInfo
LCMapStringW
GetStringTypeW
FindFirstFileExW
IsValidCodePage
SizeofResource
LockResource
LoadResource
FindResourceW
MultiByteToWideChar
GetEnvironmentStringsW
WideCharToMultiByte
GlobalAlloc
GlobalLock
FreeEnvironmentStringsW
GlobalUnlock
SetEnvironmentVariableA
WriteConsoleW
GlobalFree
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetOEMCP
GetTempPathW
GetFileAttributesW
DeleteFileW
GetTickCount
GlobalSize
Sleep
MoveFileW
CreateEventW
CloseHandle
CreateFileW
SetCommMask
SetupComm
PurgeComm
SetCommTimeouts
EscapeCommFunction
GetCommState
SetCommState
ClearCommError
ReadFile
GetLastError
GetOverlappedResult
WriteFile
OutputDebugStringW
LCMapStringA
EnterCriticalSection
LeaveCriticalSection
GlobalHandle
GlobalMemoryStatus
GetModuleHandleW
GetProcAddress
FreeLibrary
SetFilePointer
GetVersionExW
GlobalReAlloc
MulDiv
GetLogicalDriveStringsW
GetDriveTypeW
QueryDosDeviceW
GetVolumeInformationW
lstrcpyW
WaitCommEvent
LoadLibraryW
GetModuleFileNameW
FreeResource
CreateDirectoryW
GetSystemTimeAsFileTime
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SearchPathW
FindResourceExW
SetErrorMode
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
GlobalFlags
LocalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
VerifyVersionInfoW
VerSetConditionMask
SetFileAttributesW
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FindNextFileW
FileTimeToLocalFileTime
GetUserDefaultLCID
ReplaceFileW
SetFileTime
GetTempFileNameW
FindNextChangeNotification
GetExitCodeProcess
TerminateProcess
GetFileTime
GetDiskFreeSpaceW
CompareStringA
GetCurrentThread
SystemTimeToFileTime
VirtualProtect
GlobalGetAtomNameW
GetProfileIntW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalAlloc
GetStringTypeExW
lstrcmpiW
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetShortPathNameW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
ResumeThread
SuspendThread
SetThreadPriority
SetEvent
lstrcmpA
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
GetCurrentProcessId
GetModuleHandleA
FindFirstChangeNotificationW
OutputDebugStringA
SetLastError
FormatMessageW
LocalFree
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
GetCurrentThreadId
GetCurrentProcess
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CopyFileW
GetLocalTime
SetThreadLocale
QueryPerformanceCounter
GetThreadLocale
Process32NextW
Module32NextW
lstrcmpW
Module32FirstW
Process32FirstW
CreateToolhelp32Snapshot
ExitProcess
DeleteCriticalSection
InitializeCriticalSection
WinExec
lstrlenW
lstrcatW
GetWindowsDirectoryW
DeviceIoControl
WaitForSingleObject
RemoveDirectoryW
FindCloseChangeNotification
WaitForMultipleObjects

user32

GetKeyboardLayout
ToUnicodeEx
DrawIconEx
DrawFrameControl
LockWindowUpdate
GetDCEx
GetNextDlgGroupItem
PostThreadMessageW
InvalidateRgn
CopyAcceleratorTableW
MonitorFromPoint
EnableScrollBar
UpdateLayeredWindow
GetMenuDefaultItem
NotifyWinEvent
RealChildWindowFromPoint
EnumDisplayMonitors
GetSysColorBrush
SetLayeredWindowAttributes
SetWindowRgn
DrawIcon
IsZoomed
GetSystemMenu
UnionRect
ShowOwnedPopups
SetWindowContextHelpId
PostQuitMessage
MapDialogRect
ReuseDDElParam
UnpackDDElParam
LoadImageW
DestroyIcon
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
RegisterClipboardFormatW
CharNextW
GetMenuItemInfoW
DestroyMenu
WaitMessage
MapVirtualKeyW
GetKeyNameTextW
CharUpperW
SetRectEmpty
SendDlgItemMessageA
GetMessageW
IsDialogMessageW
CheckDlgButton
GetKeyboardState
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongW
EqualRect
MapWindowPoints
EnableWindow
SendMessageW
SetRect
GetDesktopWindow
AdjustWindowRectEx
RemovePropW
ShowScrollBar
GetScrollRange
ScrollWindow
ValidateRect
GetForegroundWindow
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
IsMenu
GetClassInfoExW
CallWindowProcW
GetMessageTime
RegisterWindowMessageW
GetWindowTextLengthW
SetFocus
CreateAcceleratorTableW
DestroyAcceleratorTable
SetClassLongW
CharUpperBuffW
ModifyMenuW
FrameRect
GetIconInfo
HideCaret
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetUpdateRect
SubtractRect
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetLastActivePopup
GetWindowThreadProcessId
SetActiveWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
RemoveMenu
CreateMenu
GetComboBoxInfo
GetWindowRgn
GetDlgItemTextW
GetWindowDC
ReleaseDC
GetClientRect
FillRect
LoadBitmapW
PostMessageW
GetCursorPos
ScreenToClient
SetCursor
LoadCursorW
InvalidateRect
GetDC
SetForegroundWindow
IsWindowVisible
GetAsyncKeyState
CopyRect
OffsetRect
GetSysColor
GetSystemMetrics
CreateCursor
DestroyCursor
InflateRect
ClientToScreen
GetParent
GetWindowRect
GetWindowLongW
CreateWindowExW
ShowWindow
WindowFromPoint
PtInRect
ReleaseCapture
BeginPaint
DrawFocusRect
EndPaint
DefWindowProcW
RegisterClassW
SetCapture
DestroyWindow
UnregisterClassW
SetWindowTextW
wsprintfW
GetCapture
TabbedTextOutW
DrawTextExW
GrayStringW
GetDoubleClickTime
IsRectEmpty
MessageBoxW
GetDlgItemTextA
EnumDisplaySettingsW
GetClassNameW
SetParent
SetDlgItemTextA
PeekMessageW
TranslateMessage
DispatchMessageW
KillTimer
SetTimer
SetCursorPos
ShowCursor
UpdateWindow
GetFocus
DeleteMenu
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
RegisterHotKey
UnregisterHotKey
DrawEdge
SetWindowLongW
IsIconic
IsWindow
SystemParametersInfoW
DrawTextW
GetClassInfoW
IntersectRect
GetKeyState
IsClipboardFormatAvailable
GetMessagePos
MessageBeep
AppendMenuW
InsertMenuW
GetMenuState
GetMenuStringW
DrawStateW
GetWindow
FindWindowW
LoadIconW
TrackMouseEvent
SetClipboardData
EmptyClipboard
GetDlgCtrlID
SetMenu
TrackPopupMenu
SetMenuDefaultItem
ExitWindowsEx
SetPropW
CloseClipboard
GetClipboardData
OpenClipboard
GetScrollPos
SetScrollPos
SetScrollRange
CopyImage
LoadMenuW
EnumWindows
GetWindowTextW
GetPropW
CopyIcon
RedrawWindow
InvertRect

gdi32

CopyMetaFileW
CreateHatchBrush
CreatePatternBrush
CreateRectRgn
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
LineTo
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateRectRgnIndirect
GetMapMode
SetRectRgn
DPtoLP
GetTextColor
CreateSolidBrush
StretchDIBits
CreateEllipticRgn
CreateDIBSection
LPtoDP
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
GetRgnBox
EnumFontFamiliesExW
CreatePolygonRgn
Polyline
SetDIBColorTable
OffsetRgn
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RoundRect
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
Rectangle
SetBkColor
ExtTextOutW
GetPixel
TextOutW
GetDeviceCaps
CreateDCW
SelectPalette
RealizePalette
CreatePen
StretchBlt
CreateBitmap
CreateDIBitmap
Polygon
SetPixel
SetPixelV
GetTextExtentPoint32W
GetBkColor
GetBitmapBits
GetObjectW
CreateCompatibleDC
GetDIBits
DeleteDC
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteObject
CreateFontIndirectW
GetStockObject
MoveToEx
CreateFontW
PtVisible
RectVisible
Escape
GetTextMetricsW
PatBlt
SetDIBits
SetWindowOrgEx
Ellipse
GetCharWidthW

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegDeleteKeyW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegGetValueW
RegQueryValueW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegEnumKeyW
RegOpenKeyExW
RegSetValueW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken

shell32

SHAddToRecentDocs
ShellExecuteExW
DragAcceptFiles
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetMalloc
SHAppBarMessage
SHGetDesktopFolder
ExtractIconW
ShellExecuteW
DragFinish
DragQueryFileW
SHGetFileInfoW
Shell_NotifyIconW

comctl32

ImageList_SetImageCount
ImageList_EndDrag
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragEnter
ImageList_BeginDrag
ImageList_Draw
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Remove

shlwapi

PathFindFileNameW
PathRemoveExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
UrlUnescapeW
PathFindExtensionW
StrFormatKBSizeW

ole32

IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
CoRegisterMessageFilter
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoCreateGuid
OleDraw
CLSIDFromProgID
CLSIDFromString
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
DoDragDrop
OleGetClipboard
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
CoSetProxyBlanket
CoInitializeSecurity
OleRun
CoUninitialize
CoInitialize
CoCreateInstance
CreateStreamOnHGlobal

oleaut32

SysAllocStringLen
OleCreateFontIndirect
SysStringLen
SafeArrayCreate
SafeArrayDestroy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayGetLBound
VariantCopy
SafeArrayAccessData
SafeArrayUnaccessData
VarBstrFromDate
LoadTypeLi
GetErrorInfo
VariantChangeType
VariantClear
VariantInit
VarUdateFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SysFreeString
SysAllocString

oledlg

OleUIBusyW

ws2_32

WSAStartup
WSACleanup
WSASetLastError
closesocket
recvfrom
htons
InetPtonW
InetNtopW
inet_addr
bind
setsockopt
socket
sendto

libvlc

libvlc_audio_get_channel
libvlc_audio_get_track
libvlc_audio_output_device_enum
libvlc_audio_set_channel
libvlc_audio_set_track
libvlc_audio_set_volume
libvlc_audio_toggle_mute
libvlc_event_attach
libvlc_media_get_duration
libvlc_media_get_tracks_info
libvlc_media_new_path
libvlc_media_parse
libvlc_media_player_can_pause
libvlc_media_player_event_manager
libvlc_media_player_get_length
libvlc_media_player_get_state
libvlc_media_player_get_time
libvlc_media_player_new_from_media
libvlc_media_player_pause
libvlc_media_player_play
libvlc_media_player_release
libvlc_media_player_set_hwnd
libvlc_media_player_set_media
libvlc_media_player_set_position
libvlc_media_player_stop
libvlc_media_release
libvlc_media_tracks_get
libvlc_media_tracks_release
libvlc_new
libvlc_release
libvlc_video_set_aspect_ratio

gdiplus

GdipGetImagePaletteSize
GdipCreatePen1
GdipFree
GdipDrawString
GdipSetStringFormatLineAlign
GdipGetImagePalette
GdipSetSolidFillColor
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeleteFont
GdipAddPathEllipseI
GdipCreateFontFromLogfontW
GdipGetImagePixelFormat
GdipMeasureString
GdipFillEllipseI
GdipDrawLineI
GdipSetPenEndCap
GdipSetPenStartCap
GdipSetStringFormatAlign
GdipDeletePen
GdipCreateFontFromDC
GdipSetSmoothingMode
GdipCreateBitmapFromHBITMAP
GdipCombineRegionRegion
GdipAddPathPieI
GdipSetImageAttributesColorMatrix
GdipCombineRegionPath
GdipDrawImagePointsI
GdipCombineRegionRectI
GdipDrawImagePointRectI
GdipCreateRegionPath
GdipAddPathPolygonI
GdipDeletePath
GdipCreatePath
GdipSetClipRegion
GdipDeleteRegion
GdipCreateRegionRectI
GdipDrawImageI
GdipReleaseDC
GdipGetDC
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipSaveImageToStream
GdipCreateFromHDC
GdipDeleteGraphics
GdipLoadImageFromFile
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectI
GdipCreateTexture
GdipDeleteBrush
GdipCloneBrush
GdipFillRectangleI
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipSaveImageToFile
GdipCreateBitmapFromGdiDib
GdipCreateSolidFill
GdipCreateBitmapFromFile
GdipCloneBitmapArea
GdipDrawImageRect
GdiplusShutdown
GdiplusStartup
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipSetInterpolationMode
GdipCloneBitmapAreaI
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipDrawImageRectRectI
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0

iphlpapi

GetAdaptersInfo

avformat-57

av_find_best_stream
av_read_frame
av_register_all
av_seek_frame
avformat_close_input
avformat_find_stream_info
avformat_open_input

avcodec-57

av_free_packet
av_init_packet
avcodec_close
avcodec_decode_video2
avcodec_find_decoder
avcodec_open2

avutil-55

av_frame_alloc
av_frame_free

swscale-4

sws_freeContext
sws_getContext
sws_scale

winmm

PlaySoundW
waveInAddBuffer
waveInPrepareHeader
waveInUnprepareHeader
waveInClose
waveInReset
waveInStart
waveInOpen
waveOutSetVolume
timeGetTime

msvfw32

ICInfo
ICOpen
ICGetInfo
ICClose
ICSendMessage

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

wininet

InternetCloseHandle
HttpQueryInfoW
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetQueryOptionW
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetCanonicalizeUrlW
InternetCrackUrlW
InternetOpenUrlW
InternetOpenW

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

msvcrt

strncpy

psapi

GetMappedFileNameW

Sections

.text
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

460b3dc263252f64fa9153c88686e687

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

uxtheme

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

ws2_32

libvlc

gdiplus

iphlpapi

avformat-57

avcodec-57

avutil-55

swscale-4

winmm

msvfw32

oleacc

wininet

imm32

msvcrt

psapi

Sections

.text Size: 4.8MB - Virtual size: 4.8MB

.svmp Size: 1.2MB - Virtual size: 1.2MB

.idata Size: 19KB - Virtual size: 20KB

.rsrc Size: 44KB - Virtual size: 48KB

.svmp Size: 4KB - Virtual size: 4KB

.text
Size: 4.8MB - Virtual size: 4.8MB

.svmp
Size: 1.2MB - Virtual size: 1.2MB

.idata
Size: 19KB - Virtual size: 20KB

.rsrc
Size: 44KB - Virtual size: 48KB

.svmp
Size: 4KB - Virtual size: 4KB