a540653e0e330d484dfb8383cf405d7d1cba0fae92eb37de808c99ffcd03ac7a

Sharing

Copy URL

Twitter E-mail

General

Target

a540653e0e330d484dfb8383cf405d7d1cba0fae92eb37de808c99ffcd03ac7a
Size

1.9MB
MD5

f596644b260d2772bc7c598d443b0863
SHA1

6d59a401e6a9175981215bc59908b4b6f1142289
SHA256

a540653e0e330d484dfb8383cf405d7d1cba0fae92eb37de808c99ffcd03ac7a
SHA512

c403e37a859c4b3f5ad7ea14d6df212091b5043fddd60024fcf89f55fe5c7f1640e67441d51e8e8155ce010b6e85fd5ed1d789612589ebbd563f60e8ebc9eae8
SSDEEP

24576:R6pzpYiFc4w9tr+O2UdJiADEV7syZ99Evikur0ksUHQENeGKsMt:RKzpYiFc4G+jg+rqw0EwEO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a540653e0e330d484dfb8383cf405d7d1cba0fae92eb37de808c99ffcd03ac7a

Files

a540653e0e330d484dfb8383cf405d7d1cba0fae92eb37de808c99ffcd03ac7a
.dll windows:6 windows x86 arch:x86

bf9b49227d2683f8d89f024390be6337

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\wag\mozilla\comm-253\sm32-obj\media\ffvpx\libavcodec\mozavcodec.pdb

Imports

mozavutil

av_bprint_clear
av_bprint_finalize
av_bprint_init
av_bprintf
av_buffer_alloc
av_buffer_allocz
av_buffer_create
av_buffer_default_free
av_buffer_pool_get
av_buffer_pool_init
av_buffer_pool_uninit
av_buffer_realloc
av_buffer_ref
av_buffer_unref
av_chroma_location_name
av_color_primaries_name
av_color_range_name
av_color_space_name
av_color_transfer_name
av_cpu_count
av_crc
av_crc_get_table
av_default_item_name
av_dict_copy
av_dict_free
av_dict_get
av_dict_set
av_fast_malloc
av_fast_realloc
av_fourcc_make_string
av_frame_alloc
av_frame_apply_cropping
av_frame_copy_props
av_frame_free
av_frame_move_ref
av_frame_new_side_data
av_frame_ref
av_frame_unref
av_free
av_freep
av_gcd
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_colorspace_name
av_get_cpu_flags
av_get_media_type_string
av_get_pix_fmt_name
av_get_planar_sample_fmt
av_get_sample_fmt_name
av_get_token
av_hwframe_get_buffer
av_image_check_sar
av_image_check_size2
av_image_fill_linesizes
av_image_fill_pointers
av_log
av_log_get_level
av_malloc
av_malloc_array
av_mallocz
av_mallocz_array
av_match_list
av_mul_q
av_opt_copy
av_opt_free
av_opt_set
av_opt_set_defaults
av_opt_set_defaults2
av_opt_set_dict
av_pix_fmt_count_planes
av_pix_fmt_desc_get
av_realloc
av_realloc_array
av_reallocp_array
av_reduce
av_rescale_q
av_sample_fmt_is_planar
av_samples_copy
av_samples_fill_arrays
av_samples_get_buffer_size
av_strdup
av_strlcat
av_strlcatf
avpriv_report_missing_feature
avpriv_request_sample
avpriv_set_systematic_pal2
avpriv_slicethread_create
avpriv_slicethread_execute
avpriv_slicethread_free

kernel32

AcquireSRWLockExclusive
CloseHandle
DisableThreadLibraryCalls
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitOnceBeginInitialize
InitOnceComplete
InitializeConditionVariable
InitializeSListHead
InitializeSRWLock
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
ReleaseSRWLockExclusive
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable

vcruntime140

__std_type_info_destroy_list
_except_handler4_common
memcpy
memset
strchr

api-ms-win-crt-runtime-l1-1-0

_beginthreadex
_cexit
_configure_narrow_argv
_execute_onexit_table
_initialize_narrow_environment
_initialize_onexit_table
_initterm
_initterm_e
_seh_filter_dll
abort

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-utility-l1-1-0

bsearch

api-ms-win-crt-string-l1-1-0

strcmp
strlen
strncmp

api-ms-win-crt-convert-l1-1-0

strtol

api-ms-win-crt-math-l1-1-0

cos

Exports

Exports

av_codec_ffversion
av_codec_get_chroma_intra_matrix
av_codec_get_codec_descriptor
av_codec_get_codec_properties
av_codec_get_lowres
av_codec_get_max_lowres
av_codec_get_pkt_timebase
av_codec_get_seek_preroll
av_codec_is_decoder
av_codec_is_encoder
av_codec_next
av_codec_set_chroma_intra_matrix
av_codec_set_codec_descriptor
av_codec_set_lowres
av_codec_set_pkt_timebase
av_codec_set_seek_preroll
av_copy_packet
av_copy_packet_side_data
av_dup_packet
av_fast_padded_malloc
av_fast_padded_mallocz
av_free_packet
av_get_audio_frame_duration
av_get_bits_per_sample
av_get_codec_tag_string
av_get_exact_bits_per_sample
av_get_pcm_codec
av_get_profile_name
av_grow_packet
av_hwaccel_next
av_init_packet
av_lockmgr_register
av_new_packet
av_packet_copy_props
av_packet_free_side_data
av_packet_from_data
av_packet_get_side_data
av_packet_merge_side_data
av_packet_move_ref
av_packet_new_side_data
av_packet_pack_dictionary
av_packet_ref
av_packet_rescale_ts
av_packet_shrink_side_data
av_packet_side_data_name
av_packet_split_side_data
av_packet_unpack_dictionary
av_packet_unref
av_parser_change
av_parser_close
av_parser_init
av_parser_next
av_parser_parse2
av_rdft_calc
av_rdft_end
av_rdft_init
av_register_codec_parser
av_register_hwaccel
av_shrink_packet
av_vorbis_parse_frame
av_vorbis_parse_frame_flags
av_vorbis_parse_free
av_vorbis_parse_init
av_vorbis_parse_reset
av_xiphlacing
avcodec_align_dimensions
avcodec_align_dimensions2
avcodec_alloc_context3
avcodec_chroma_pos_to_enum
avcodec_close
avcodec_configuration
avcodec_copy_context
avcodec_decode_audio4
avcodec_decode_subtitle2
avcodec_decode_video2
avcodec_default_execute
avcodec_default_execute2
avcodec_default_get_buffer2
avcodec_default_get_format
avcodec_descriptor_get
avcodec_descriptor_get_by_name
avcodec_descriptor_next
avcodec_enum_to_chroma_pos
avcodec_fill_audio_frame
avcodec_find_decoder
avcodec_find_decoder_by_name
avcodec_find_encoder
avcodec_find_encoder_by_name
avcodec_flush_buffers
avcodec_free_context
avcodec_get_class
avcodec_get_context_defaults3
avcodec_get_frame_class
avcodec_get_name
avcodec_get_subtitle_rect_class
avcodec_get_type
avcodec_is_open
avcodec_license
avcodec_open2
avcodec_receive_frame
avcodec_register
avcodec_register_all
avcodec_send_packet
avcodec_string
avcodec_version
avpriv_pix_fmt_bps_avi
avpriv_pix_fmt_bps_mov
avsubtitle_free

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 513KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf9b49227d2683f8d89f024390be6337

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mozavutil

kernel32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 137KB - Virtual size: 136KB

.data Size: 1024B - Virtual size: 513KB

.00cfg Size: 512B - Virtual size: 4B

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 54KB - Virtual size: 54KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 137KB - Virtual size: 136KB

.data
Size: 1024B - Virtual size: 513KB

.00cfg
Size: 512B - Virtual size: 4B

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 54KB - Virtual size: 54KB