DaVinci_Resolve_10[.]1[.]5_Windows[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

DaVinci_Resolve_10.1.5_Windows.exe
Size

204.1MB
MD5

2e23225cd0f7e23eccbc4792e243fc8c
SHA1

5d5d18b5f26d53d1fe3a8dd7814e1181cbf2d0aa
SHA256

5c286388e0902d7b0ad370837dc23bd944573103627cc646822dba9351983961
SHA512

08999f67e39c181c5320cd9b581e6845ad28054fb8027f1d69aac0a3c1717a2c637bdc4c98ed33130078ba8f59695addd09d6617d9e44e040c5fe0aa20a4f328
SSDEEP

6291456:61B3zzQUHpRuCepGI7XrDs7RTm5UjpEl1aDMT:G9ACepP3s7Fj4mMT

Score

1^/10

Malware Config

Signatures

Files

DaVinci_Resolve_10.1.5_Windows.exe
.exe windows:4 windows x86 arch:x86

d673b478499bbe508bcb7a21802a8bc1

Code Sign

6d:24:db:d5:62:89:b0:7e:e7:1d:2a:13:57:7d:15:d0:d3:58:26:1d
Signer

Actual PE Digest

6d:24:db:d5:62:89:b0:7e:e7:1d:2a:13:57:7d:15:d0:d3:58:26:1d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\dblock\source\dotnetinstaller\dblock\dotNetInstaller\Release\dotNetInstaller.pdb

Imports

kernel32

SetLastError
InterlockedExchange
LoadLibraryA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
CompareStringA
FreeLibrary
Sleep
WaitForSingleObject
MulDiv
CloseHandle
InterlockedIncrement
InterlockedDecrement
LoadResource
LockResource
SizeofResource
InterlockedCompareExchange
SetEnvironmentVariableA
GetFullPathNameA
GetDriveTypeA
SetCurrentDirectoryA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetStringTypeA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
SetConsoleCtrlHandler
GetTimeZoneInformation
LCMapStringA
VirtualAlloc
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
FormatMessageA
LocalFree
GetLastError
GetTempFileNameA
DeleteFileA
CopyFileA
MoveFileA
ReadFile
WriteFile
GetTempPathA
GetCurrentDirectoryA
GetSystemInfo
GetSystemDefaultLCID
GetUserDefaultLCID
GetCurrentProcess
GetExitCodeProcess
FindClose
GetCurrentThreadId
SetFilePointer
FindResourceA
ResumeThread
GetFileAttributesA
CreateFileA
GetTickCount
DosDateTimeToFileTime
TlsGetValue
TlsSetValue
SetFileTime
LocalFileTimeToFileTime
GetCommandLineW
GetCurrentProcessId
TlsAlloc
GetVersionExA
GlobalDeleteAtom
FreeResource
SetThreadPriority
SetEvent
SuspendThread
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GlobalFree
lstrcmpA
EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
GetCurrentThread
GlobalFlags
InitializeCriticalSection
LocalAlloc
GlobalReAlloc
GlobalHandle
LocalReAlloc
TlsFree
lstrlenA
GetThreadLocale
FileTimeToSystemTime
SystemTimeToFileTime
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
SetErrorMode
FileTimeToLocalFileTime
GetFileTime
HeapFree
HeapAlloc
GetProcessHeap
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
ExitProcess
GetConsoleCP
GetConsoleMode
ExitThread
CreateThread
HeapReAlloc
HeapSize
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetACP
GetOEMCP
FatalAppExitA

user32

SetMenuItemBitmaps
GetWindowPlacement
SystemParametersInfoA
IntersectRect
SetWindowPlacement
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
AdjustWindowRectEx
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenu
IsWindowVisible
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
TrackPopupMenu
TrackPopupMenuEx
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
DestroyWindow
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
SetActiveWindow
MoveWindow
GetForegroundWindow
CallNextHookEx
IsChild
SendDlgItemMessageA
ValidateRect
GetActiveWindow
TranslateMessage
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
GetWindowThreadProcessId
RemoveMenu
GetNextDlgTabItem
GetDesktopWindow
ShowOwnedPopups
GetSysColorBrush
DestroyMenu
GetMenuCheckMarkDimensions
DeleteMenu
DestroyIcon
GetCapture
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
ReuseDDElParam
UnpackDDElParam
GetSystemMenu
SetParent
UnionRect
GetDCEx
LockWindowUpdate
UnregisterClassA
GetDlgCtrlID
IsDlgButtonChecked
SetDlgItemInt
GetDlgItemInt
GetDlgItem
CheckRadioButton
CheckDlgButton
GetWindow
GetKeyState
SetWindowPos
WindowFromPoint
ScreenToClient
IsWindowEnabled
CopyRect
MessageBoxA
PostQuitMessage
UnhookWindowsHookEx
EndDialog
ExitWindowsEx
ReleaseCapture
InflateRect
IsWindow
GetCursorPos
RedrawWindow
GetFocus
InvalidateRect
FillRect
SetTimer
GetSysColor
OffsetRect
GetParent
DrawFocusRect
GetDC
IsRectEmpty
GetClientRect
KillTimer
PtInRect
GetMenuState
EnableMenuItem
CheckMenuItem
ScrollWindowEx
SetFocus
GetDialogBaseUnits
ShowWindow
GetLastActivePopup
WaitMessage
GetWindowRect
SetCursor
SetRect
DrawIcon
GetSystemMetrics
IsIconic
UpdateWindow
ReleaseDC
SetCapture

gdi32

SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetBkColor
StretchDIBits
DPtoLP
PatBlt
GetMapMode
CombineRgn
SetRectRgn
CreateRectRgnIndirect
GetClipBox
ExtCreatePen
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
SelectPalette
GetStockObject
CreatePatternBrush
CreateDIBPatternBrushPt
DeleteDC
ExtSelectClipRgn
PolyBezierTo
PolylineTo
PolyDraw
ArcTo
GetCurrentPositionEx
BitBlt
CreatePen
CreateCompatibleDC
GetCurrentObject
CreateCompatibleBitmap
SetPixel
GetDeviceCaps
CreateSolidBrush
Rectangle
ScaleWindowExtEx
SetWindowExtEx
GetDCOrgEx
CreateBitmap
CreateHatchBrush
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
DeleteObject
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SetMapMode

shell32

SHGetMalloc
DragFinish

comctl32

_TrackMouseEvent
ord17

shlwapi

PathCombineW
PathRemoveExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW

ole32

CoTaskMemFree
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
ReadFmtUserTypeStg
CoCreateGuid
IIDFromString
ReadClassStg
CreateBindCtx
ReleaseStgMedium
CoTaskMemAlloc
StringFromCLSID
CoTreatAsClass
OleDuplicateData
CoDisconnectObject
CoCreateInstance
StringFromGUID2
CLSIDFromString

oleaut32

SafeArrayCopy
SafeArrayAllocData
VarBstrFromDate
VarDecFromStr
VarBstrFromDec
VarBstrFromCy
VarCyFromStr
SysReAllocStringLen
VarDateFromStr
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
SysFreeString
SysAllocStringByteLen
SysStringByteLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
VariantCopy

urlmon

URLDownloadToFileW

advapi32

OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegCloseKey
GetTokenInformation
DuplicateToken
FreeSid
AllocateAndInitializeSid

winspool.drv

ClosePrinter

msi

ord45
ord205
ord70
ord8
ord32
ord159
ord160
ord118
ord92

Sections

.text
Size: 840KB - Virtual size: 839KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 203.1MB - Virtual size: 203.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d673b478499bbe508bcb7a21802a8bc1

Code Sign

6d:24:db:d5:62:89:b0:7e:e7:1d:2a:13:57:7d:15:d0:d3:58:26:1dSigner

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

shell32

comctl32

shlwapi

ole32

oleaut32

urlmon

advapi32

winspool.drv

msi

Sections

.text Size: 840KB - Virtual size: 839KB

.rdata Size: 216KB - Virtual size: 214KB

.data Size: 20KB - Virtual size: 36KB

.rsrc Size: 203.1MB - Virtual size: 203.1MB

6d:24:db:d5:62:89:b0:7e:e7:1d:2a:13:57:7d:15:d0:d3:58:26:1d
Signer

.text
Size: 840KB - Virtual size: 839KB

.rdata
Size: 216KB - Virtual size: 214KB

.data
Size: 20KB - Virtual size: 36KB

.rsrc
Size: 203.1MB - Virtual size: 203.1MB