f077aaef19aeca464709e181e9398ab5362e1675879088301a586d5219b21d1d

Sharing

Copy URL Twitter E-mail

General

Target

f077aaef19aeca464709e181e9398ab5362e1675879088301a586d5219b21d1d
Size

17KB
MD5

9f679d1f13c37c47346388a9e6691692
SHA1

df6981a75f6b52faabc8da2402ac30e44d86b6bb
SHA256

f077aaef19aeca464709e181e9398ab5362e1675879088301a586d5219b21d1d
SHA512

85adc4be5f34af12251f251493350c30b0a3a2177033620d4c05974510b3d8c349e8cfc98ff3e819cef78ca1d32066bc125e03040329bc9d745473cb26270920
SSDEEP

384:hl98RHrWfUhPkPB0+1XlNB6IZIN1lZ0F:fIHKfuPsBnlNMIZIN1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f077aaef19aeca464709e181e9398ab5362e1675879088301a586d5219b21d1d

Files

f077aaef19aeca464709e181e9398ab5362e1675879088301a586d5219b21d1d
.dll windows:6 windows x64 arch:x64

ca34868af2bfeaa6e07ebdcfb53618b4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

Imports

libvlccore

vlc_frame_Alloc
vlc_frame_Release
vlc_obj_malloc

msvcrt

__iob_func
_amsg_exit
_initterm
_lock
_unlock
_write
abort
calloc
free
fwrite
memcpy
memset
realloc
strlen
strncmp
vfprintf

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetLastError
GetModuleHandleW
GetProcAddress
InitializeCriticalSection
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryW
Sleep
TerminateProcess
TlsGetValue
VirtualProtect
VirtualQuery

Exports

Exports

vlc_entry
vlc_entry_api_version
vlc_entry_copyright
vlc_entry_license

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca34868af2bfeaa6e07ebdcfb53618b4

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libvlccore

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 3KB - Virtual size: 2KB

.buildid Size: 512B - Virtual size: 53B

.data Size: 512B - Virtual size: 256B

.pdata Size: 512B - Virtual size: 324B

.tls Size: 512B - Virtual size: 16B

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 80B

/4 Size: 512B - Virtual size: 48B

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 3KB - Virtual size: 2KB

.buildid
Size: 512B - Virtual size: 53B

.data
Size: 512B - Virtual size: 256B

.pdata
Size: 512B - Virtual size: 324B

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 80B

/4
Size: 512B - Virtual size: 48B