UvcCamDownload_AllInOne_RsProxy[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

UvcCamDownload_AllInOne_RsProxy.exe
Size

6.0MB
MD5

1f2fb8acd43aa3a49a1b3661edc79eeb
SHA1

a01f8ea6ea6b0def6e977c9855f05a0acb3a7f07
SHA256

6996c9398869b80bab4c7e2025f39f831a4cd422572e0874e4552ed370b4268b
SHA512

29d46de671002757d2521e65d0df92bee95a609ae823c74b780ad315a16ea3a44a0a978793e30903c9580b07c06be0dbc326af10149e879341bfbcaade7e9146
SSDEEP

98304:T5qZsQSyR7x/iB+ZgHEKXSEfy1cNZoDh3qdDpP1bBHtT5fFDFLOAkGkzdnEVomFI:lqZR7x4EyoDh36FLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
UvcCamDownload_AllInOne_RsProxy.exe

Files

UvcCamDownload_AllInOne_RsProxy.exe
.exe windows:6 windows x86 arch:x86

Password: meyertool

a1fec575b04edd555f02fa1659057e1a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\SW_Camera\Win_AP\CameraDump\Release_UVCDOWNLOADTOOL32\UvcCamDownload_AllInOne_RsProxy.pdb

Imports

setupapi

SetupDiGetDeviceRegistryPropertyA
CM_Get_DevNode_Status
SetupDiGetDeviceInstanceIdA
SetupDiDeleteDeviceInterfaceData
SetupDiOpenDeviceInterfaceW
CM_Get_Child
CM_Get_DevNode_Registry_PropertyW
CM_Get_Sibling
SetupDiGetClassDevsW
CM_Locate_DevNodeW
CM_Get_Parent
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
CM_Get_Device_IDW
SetupDiOpenDevRegKey
SetupDiGetDeviceInstanceIdW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

ws2_32

getsockopt
ntohs
setsockopt
WSAIoctl
getaddrinfo
getsockname
accept
listen
recvfrom
sendto
gethostname
getpeername
bind
WSASetLastError
WSAGetLastError
WSACleanup
WSAStartup
socket
send
select
recv
inet_addr
htons
ioctlsocket
connect
closesocket
__WSAFDIsSet
freeaddrinfo

wldap32

ord301
ord147
ord133
ord79
ord142
ord167
ord127
ord27
ord26
ord118
ord41
ord208
ord216
ord14
ord46
ord145

winusb

WinUsb_Initialize
WinUsb_QueryInterfaceSettings
WinUsb_ControlTransfer
WinUsb_Free

kernel32

lstrcpyW
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
SetThreadPriority
SuspendThread
ResumeThread
FindClose
FindFirstFileW
GetFileSize
GetFullPathNameW
GlobalFindAtomW
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
GetThreadLocale
FileTimeToLocalFileTime
FindNextFileW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFileAttributesExW
GetFileSizeEx
GetFileTime
LocalFileTimeToFileTime
SetFileAttributesW
SetFileTime
SystemTimeToFileTime
VirtualProtect
GlobalGetAtomNameW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GlobalFlags
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTempFileNameW
GetUserDefaultLCID
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
EncodePointer
OutputDebugStringA
FlushConsoleInputBuffer
LoadLibraryA
GlobalMemoryStatus
PeekNamedPipe
ReadFile
GetFileType
WaitForSingleObjectEx
FormatMessageA
VerifyVersionInfoW
SleepEx
VerSetConditionMask
lstrcmpA
GlobalLock
GlobalUnlock
GetSystemDefaultLangID
InitializeCriticalSectionEx
GlobalFree
GlobalAlloc
CreateFileA
CopyFileW
LoadLibraryW
FreeLibrary
GetNativeSystemInfo
GetVersionExW
GetSystemDirectoryW
DeviceIoControl
SetLastError
GetTempPathW
RemoveDirectoryW
WaitForMultipleObjects
MulDiv
GetACP
GetLocaleInfoW
GetProcessHeap
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
AttachConsole
FreeResource
GetCommandLineA
GetCurrentDirectoryW
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
DeleteCriticalSection
FlushFileBuffers
InitializeCriticalSection
SetFilePointer
GetFileAttributesW
GetLocalTime
QueryPerformanceCounter
QueryPerformanceFrequency
OutputDebugStringW
LocalFree
LocalAlloc
ReleaseMutex
CreateMutexW
WideCharToMultiByte
DeleteFileW
CreateDirectoryW
GetModuleFileNameW
MultiByteToWideChar
GetTickCount
GetProcAddress
GetModuleHandleW
WriteFile
GetCurrentThread
GetCurrentProcessId
SetEvent
MapViewOfFile
CreateFileMappingW
CreateEventW
CreateFileW
GetCurrentProcess
CloseHandle
ResetEvent
WaitForSingleObject
SetThreadUILanguage
SetThreadLocale
lstrcmpiW
GetCommandLineW
Sleep
CreateThread
GetLastError
FindResourceW
LoadResource
LockResource
SizeofResource
FormatMessageW
GlobalSize
GetTickCount64
CompareStringW
SwitchToThread
LCMapStringW
GetStringTypeW
GetCPInfo
RtlUnwind
SetStdHandle
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetDriveTypeW
GetFileInformationByHandle
SetFilePointerEx
ExitProcess
FindFirstFileExW
SetConsoleCtrlHandler
GetConsoleCP
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
GetConsoleMode
ReadConsoleW
GetDateFormatW
GetTimeFormatW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
SetConsoleMode
ReadConsoleInputW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
GetVolumeInformationW

user32

GetUpdateRect
SetClassLongW
DestroyAcceleratorTable
ModifyMenuW
CopyIcon
GetDoubleClickTime
LockWindowUpdate
SetCursorPos
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetParent
WaitMessage
SetRect
IsClipboardFormatAvailable
GetComboBoxInfo
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
LoadImageW
DestroyIcon
MonitorFromPoint
UnionRect
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
DeleteMenu
KillTimer
SetTimer
TrackMouseEvent
RealChildWindowFromPoint
CopyImage
EnumDisplayMonitors
SetLayeredWindowAttributes
IntersectRect
IsZoomed
CharUpperW
ShowOwnedPopups
TranslateMessage
GetMessageW
MapDialogRect
SetWindowContextHelpId
DrawIconEx
GetSysColorBrush
DrawFrameControl
PostQuitMessage
MapVirtualKeyW
GetKeyNameTextW
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
NotifyWinEvent
LoadCursorW
IsRectEmpty
InflateRect
InvertRect
HideCaret
SetCursor
MessageBeep
EnableScrollBar
SetCapture
GetAsyncKeyState
SetRectEmpty
SendDlgItemMessageA
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
RemoveMenu
InsertMenuW
GetMenuState
GetMenuStringW
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
LoadMenuW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CharNextW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassLongW
SetWindowLongW
PtInRect
EqualRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
EndPaint
BeginPaint
EnableWindow
SendMessageW
LoadIconW
PostMessageW
InvalidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
GetClassNameW
UpdateWindow
DrawStateW
GetUserObjectInformationW
GetProcessWindowStation
RedrawWindow
CopyAcceleratorTableW
InvalidateRgn
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
GetWindowRgn
DestroyCursor
CreateMenu
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
GetNextDlgGroupItem
GetParent
ReleaseCapture
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
SubtractRect
FrameRect
CharUpperBuffW
RegisterClipboardFormatW
CheckMenuItem
CreateAcceleratorTableW
GetSystemMenu
AppendMenuW
GetWindowRect
RegisterDeviceNotificationW
UnregisterDeviceNotification
LoadBitmapW
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
PostThreadMessageW
IsWindow
IsWindowVisible
CopyRect
FillRect
MessageBoxW
UnregisterClassW
DrawEdge
GetWindowTextW
GetDC
GetSysColor
GetWindowLongW
GetCapture
GetCursorPos
WindowFromPoint
OffsetRect
DrawFocusRect
SetWindowRgn
ReleaseDC
ClientToScreen
GetIconInfo

gdi32

OffsetRgn
RoundRect
EnumFontFamiliesExW
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
StretchBlt
SelectClipRgn
GetPixel
CreateRectRgn
CombineRgn
CreateDCW
GetStockObject
RealizePalette
SelectPalette
SetBkColor
SetTextColor
CreateBitmap
CopyMetaFileW
CreateHatchBrush
CreatePen
GetRgnBox
Escape
ExcludeClipRect
GetClipBox
ExtFloodFill
SetPaletteEntries
FrameRgn
PtInRegion
SetPixelV
FillRgn
GetBoundsRect
GetViewportOrgEx
GetWindowOrgEx
GetTextFaceW
ExtTextOutW
SetDIBColorTable
SetPixel
Rectangle
GetPaletteEntries
CreatePalette
CreateDIBSection
CreateRoundRectRgn
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
DPtoLP
SetRectRgn
GetMapMode
Polyline
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
CreateEllipticRgn
PatBlt
GetTextMetricsW
GetTextExtentPoint32W
CreateRectRgnIndirect
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
BitBlt
CreateCompatibleBitmap
SelectObject
CreateSolidBrush
GetDeviceCaps
GetBkColor
DeleteDC
CreateCompatibleDC
CreateFontIndirectW
GetObjectW
CreatePatternBrush
DeleteObject
TextOutW
MoveToEx
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
ExtSelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetObjectType
SetViewportExtEx

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

CryptDestroyKey
RegCloseKey
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
CryptGenRandom
CryptEncrypt
CryptImportKey
RegQueryValueExW
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
StartServiceW
QueryServiceStatus
OpenServiceW
OpenSCManagerW
DeleteService
CreateServiceW
ControlService
CloseServiceHandle
SetSecurityDescriptorDacl
InitializeSecurityDescriptor

shell32

SHGetMalloc
SHGetPathFromIDListW
DragQueryFileW
SHAppBarMessage
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
SHGetFileInfoW
DragFinish
ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

StrChrW
StrStrIW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW

uxtheme

IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
DrawThemeText
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemePartSize
GetThemeSysColor

ole32

CoSetProxyBlanket
PropVariantClear
OleGetClipboard
DoDragDrop
CreateILockBytesOnHGlobal
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
CoFreeUnusedLibraries
ReleaseStgMedium
CLSIDFromString
CLSIDFromProgID
CoDisconnectObject
CreateStreamOnHGlobal
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleLockRunning
CoCreateInstance
IIDFromString
CoInitialize
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoCreateGuid
CoTaskMemFree
CoTaskMemAlloc
OleIsCurrentClipboard
OleFlushClipboard
OleDuplicateData
CoRegisterMessageFilter
CoRevokeClassObject
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleUninitialize
OleInitialize

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysAllocString
VariantCopy
VarBstrFromDate
SysStringLen
SysFreeString
VariantChangeType
LoadTypeLi
SysAllocStringLen
VariantInit
VariantClear
OleCreateFontIndirect

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDeleteGraphics

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 647KB - Virtual size: 646KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 215KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: meyertool

a1fec575b04edd555f02fa1659057e1a

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

setupapi

version

ws2_32

wldap32

winusb

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.rdata Size: 647KB - Virtual size: 646KB

.data Size: 215KB - Virtual size: 246KB

.rsrc Size: 2.3MB - Virtual size: 2.3MB

.reloc Size: 205KB - Virtual size: 205KB

.text
Size: 2.7MB - Virtual size: 2.7MB

.rdata
Size: 647KB - Virtual size: 646KB

.data
Size: 215KB - Virtual size: 246KB

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

.reloc
Size: 205KB - Virtual size: 205KB