5ae41d15101ad481c2122d277eb991e9db02e9d360da737d6d3ebc9a2182d00a

Analysis

max time kernel
46s
max time network
19s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
14/06/2024, 15:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
Size

184.6MB
MD5

f9d73e205be364a15c44e79d244c4ab7
SHA1

f4efdcfb2b249fe60bf7ed5cd48a8d171787a6e7
SHA256

5ae41d15101ad481c2122d277eb991e9db02e9d360da737d6d3ebc9a2182d00a
SHA512

a565fd8709aee6699d5d3015290b40784bdb7f22e82b9eaed7a0cd5fbe28bbb7c4895ca1f4a3bf7a34f50741e45023607c275e0f865eff4e98a5eb744f704a87
SSDEEP

3145728:/2KXK+6tO1Ze01pJe0ynesrC6k5kr3sEOaiSa1rzMlbszvVCZYHAWkWx54:NB913fwefhkrcEOai5Z4OVsx

Score

7^/10

discovery

Malware Config

Signatures

Loads dropped DLL 21 IoCs

pid	Process
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
1144	Process not Found
1144	Process not Found
1144	Process not Found
1144	Process not Found
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_En\title.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Zh\subtab_select.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\SPSSModelRes\Images\TreeIcon\Region.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\TargetDetectUI\TargetDetectUI\xml\CarNumColorDictionary.xml	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\Notify\QCommonNotification.css	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\TV-Matrix\Win25.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\real\HumanTrait\HumanAttributes\bag_has.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\Translate_En\qivsdeviceconfig_en.qm	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Languages\spssmodel_sr.qm	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\AttendanceUI\Attendance\schedule_temporary.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\DSGui\MessageNotify\bg.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\ACS\ChangeTree_normal.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\ACS\CheckBox\abnormal_checked_hover.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\common\uncheck.ico	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\IvsDrawer.dll	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Chl_En\combobox.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\FaceDetectUI\FaceDetectUI\recognition.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\IVS\step1_gray.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\ACS\reset_hover.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\ACS\unlock_hover.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\UserMgr\TreeUser.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\menu\arrow__normal.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\FaceDetectUI.lib	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_En\scheme\city_normal.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Zh\qIvsIntelliTrackSDConfigWidget.ui	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Languages\attendanceui_ko.qm	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\TargetDetectUI\TargetDetectUI\AddTo.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\real\ptz\Mouse.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\7z.dll	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Zh\scheme\heatmap_normal.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Zh\scheme\numberstat_pressed.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\Skin\public\slider_button_pressed.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\DSGui\PTZ\ApertureDec.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\TargetDetectUI\TargetDetectUI\TargetSearch-n.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Common.dll	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Chl_En\toleft.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_En\sd_step_one.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Zh\QRuleConfigWidget.ui	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\FaceDetectUI\FaceDetectUI\anger.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\ACS\PTZ-pull.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IvsDrawer.dll	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\P2PDll.lib	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\EFSHelper.dll	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_En\QSlavePlateConfigWidget.ui	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Languages\devcfgctrl_fr.qm	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\DSGui\RadioButton\CheckedNormal.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\TargetDetectUI\TargetDetectUI\fear.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\PSS_Style.css	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\DevCfg\common\select_red.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_En\scheme\normal_normal.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\SPSSModelRes\Images\TreeIcon\DsconOffline.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\FaceDetectUI\FaceDetectUI\ListDelete.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\TargetDetectUI\TargetDetectUI\CTargetSearchWnd.css	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\ACS\NavigationBar\ACSAttendance-h.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\DSGui\MessageBox\Warning.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\FaceDetectUI\FaceDetectUI\capturesearch-p.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\ACS\VisitorManagerWidget.css	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\VideoTalk\Supervisor\Call.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\common\RadioUnCheckedNormal.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\devmanage\chnl_define.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\real\HumanTrait\HumanAttributes\skirt_white.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\sound\zh_cn\move detection.wav	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\IVS\bin\DefaultStyle_Zh\button_pressed.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
File created	C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\Emap\mark_span.png	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious behavior: EnumeratesProcesses 3 IoCs

pid	Process
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2256	Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe

C:\Users\Admin\AppData\Local\Temp\Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe
"C:\Users\Admin\AppData\Local\Temp\Amcrest SurveillancePro-Win64_International_IS_V2.003.00AC001.0.R.230524.exe"
1⤵
- Loads dropped DLL
- Drops file in Program Files directory
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
PID:2256

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\DustyBlue\TargetDetectUI\TargetDetectUI\Modify.png

Filesize
15KB

MD5
4eafe272ae895a6ac1e52edf53c50037

SHA1
99a5f1109bc35f21a59f4ed933b5f5b92e320fa3

SHA256
7e78175c46e01e2b507ce8d6cea81de732bc3b6bdaa2a56d2a726f7042ffb14c

SHA512
84ffcda16d5ae5305ed88667cd080d0f7db9e8a1b277527dcb8222e421cc3eaa29f56a485c653664fdb419cfeb89a36f378b57c64fccdebd242393ad0ca78ba0

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\DevCfg\DownButton.png

Filesize
246B

MD5
2a6ab8562a255eaf53a3eb83bff09529

SHA1
0ca6fe88d41cebd3c988ca3bb0592fa4cdb66163

SHA256
9b33a08b0e8ecab7beeaf10cfb1c6fc0e3f4120edb7d1a5ba54e72a36e73ba7a

SHA512
adc4a78df7aff98a3db279ffb124eb8e4c87786654b22cfb22bcae4bb8d8f1c688431f42c9a42228dd24ed3e276e720ed6243ed921d04371c8ac114cbc406cba

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\TV-Matrix\ListDelete.png

Filesize
824B

MD5
9d202372665a4a7f33e6209ea9cd6820

SHA1
8b015b2b81f66891c290df0070be0cca1b65ab2d

SHA256
8c3660054bbfb53c0c8c1ad5302e288a0f2822d51fa85671cb65f4977b9610ca

SHA512
5307be60c132adfd1f99157deed5064b9f1fa3ce2bd8b8fd42237055b143dc572fa1e8749809bf3776fe68502166e9ef4d193d4d78519eb2f4f566146519da49

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\VideoTalk\Monitor\Close.png

Filesize
513B

MD5
c510c66c6b7b123d832f5c7837c8ae16

SHA1
f3afb818a845d00f0cabde4424be29d21db72677

SHA256
a16eec716cf3376f94f8b0dcddc016c9d9d3e3057f160bec74bb20c25040c314

SHA512
e3bf39d12c9134d0b9954d64a5b5d5a4128db1a4d922316d240d7de3669114e39dfa9df4f7d56380c4d23f257361a213e753ec7107707d6b407c74f38be383b9

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\VideoTalk\Supervisor\Busy.png

Filesize
1KB

MD5
41f01db4e45de8f8de096c020888a636

SHA1
447f146fa04cfc6cec62eaee0c693181107aac16

SHA256
5cb1927c987616bc43bdcb067b0535650e852c19c382071149f7ac62456c1828

SHA512
5ad7d5b451839452726d9ed8c524a3839c5573d6dd6242b6363fdc828593c9775cda4d6a8677fd4929b7ed0265ee66b13650d970d95cdc23e1132c2d2a0171fd

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\real\fullscreen.png

Filesize
747B

MD5
ffad69081b74e79900baa2fed4a43837

SHA1
f6f787a2e6b0a55221a8b9e5f548cdeb39b54aa8

SHA256
ea72f5faa2198ff6da1a127f770849c9acde6c235836a22cf01c5af950d124b7

SHA512
8b7aa3d47af7540c1d7c8b46e6c18c6e4f519deb58f0cd4e78d8dcfc0a555be8877a24933aa8a5fa4e4f24469b38e2567b9942663192b0f124dfdd68fbdadc86

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\real\window\talk.png

Filesize
732B

MD5
b190f878d4a92f71214ba9f3ba048eb8

SHA1
a57b0d8975ddefc62ad086764cefa15a8867a9aa

SHA256
df472050ef18d9b90fad9ac1148be28e4a101068d61a1e802291d11220c2382f

SHA512
77d00c14e31dc250e5fcf9efc7c2c26f2927f09c68d09889d07eb7e467b3756ff94e7e323b8928200288d3fe005ba6fb55350ee35e70b9813bef4227e413b634

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\real\window\voice_off.png

Filesize
575B

MD5
5f68f1f31615fb477e755dc81a8c468e

SHA1
0c570a79bb25bc8bf232957d403aad64556f2177

SHA256
9f83d1df593708f231a354921181a3c5ae8474bd6b5a7d59ea77ab92ebfe655f

SHA512
26cd8fc7f13bb77464dd46a820377397258219201bfb12e5eef6b25681c06c1a51dd0ba1e2a3addedce82ab9d6e417de15ece18803b221198d4fde6f89e0f574

Download Submit
C:\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Skin\theme1\real\window\voice_on.png

Filesize
627B

MD5
58f39fcc9bb1e419627a9a78cf41e807

SHA1
d00ba4c6442bee6b2340f95c97577ad6b6bc116a

SHA256
0740def26ce4a59692eacd90edd9628974751c9c9e178cc769a61cc2a444c16f

SHA512
37db8174b314be2ead8926a7407e3a540d4ef566205ecd5c1477ad2ad62f44e4f9e33cac2ef448a86d0814619827f01ff1416bda079765e17d8c251d069b7497

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\LangStr_en.ini

Filesize
4KB

MD5
423950126478aa9231bb3532aba19d19

SHA1
62168f9bddc7b2f4d49d7041d362d54a5a321fc6

SHA256
2d213278d4ae0232a718e69a5e10a4c8a97863117a731a94ef297e0e14a10499

SHA512
89ce162ba5164170db2c47fd35e26f96010f1f99577002c6a6ffcfed2e65e9d73b7527b5808b6b6ea05b43d37fcbe29b32aba392c915e89029a2699630918bd8

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\LangStr_es.ini

Filesize
4KB

MD5
b1129859f1469e35ce0101e2c14d6109

SHA1
39b6e347f0e7919c467c9b41f4f98486e8561122

SHA256
7f88c5d4f636989545484f67f16600a79ad62ab8873ec64d1145643e4fd245ec

SHA512
ebbe047405b80e56dbd877d7544aa99beef5b9a6433883b8df05558c6d2609d2bc19df14d362d605a01bce19be3cb0b5384ffcb4c5cc5c9f0ff68a17bfaa9af0

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\Slide 05.jpg

Filesize
4.7MB

MD5
fd1781e66c38e8e8e664566e22a07d73

SHA1
625daf223f856cfcf8417d96c0029e1a13b56d74

SHA256
a514dac7f7c033a8c5e8eecc74ec806bd7fcecd4d217d59f326bf5246aef981d

SHA512
7c65ffa0a0c6fe64d51e2c9e348e7fcd556cad3f2cdd0847ddcc6ece1e6951d1c33d9382ab79abb044fc056a3668ed59e355472e5c59d4551e60f9d81cf79f88

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\btn_clos.bmp

Filesize
1KB

MD5
f0ee3ce6ddecc22aa217af312e761b26

SHA1
b744ddb94bb0d6bf426abf7040cf3619393d8d55

SHA256
7c511c6a8455d356fdbb6e656e1e875962bd63ee5a99aadf826a761ae93dc685

SHA512
64eccc6929ba2e88fc95fb478f10875e5ef9df5ecb0e4041dd65a025d47b645cdb145d2ea860b16fbd55de31aeb9ed6b94a7d9312490b1d6ff5c80b1ac107978

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\btn_mini.bmp

Filesize
3KB

MD5
16498f0b88e304022a5d2336c1c6c399

SHA1
8b6d22569adde6637623b20b9d8e8df09d98c504

SHA256
26fba88035d9604b811ebc35745ac07d506afa6d36b6d9ca8a6a21c9871c6e0d

SHA512
f7715770763f16eeb83aa3bdedb6cd22b9c45560e413d4e8e973bd22eaefa72e92615fa421a383e0d4d3685e700bb9f05061b21a901924fb213a6ec2ab516a98

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\licenseEN.rtf

Filesize
63KB

MD5
e6e36d4f5d374e08336bcc218e56df57

SHA1
9f9fdc1685832a8c183fcf7dce06d69c7cce68e8

SHA256
c4b8c123e131b50a3086cd7c65acc94b3b73be9859951ff3dffec2fe106165a4

SHA512
8c75437ba58a9a6c7bbef13b21df90d24ac15ac1f73daab6eae85df68eb6f5bb439132f24c69f63b6cca4c75b39e083aee0bfadbcc436d22e82cde70a592f83f

Download Submit
\Program Files\Amcrest Surveillance Pro\Amcrest Surveillance Pro\Amcrest Surveillance Pro.exe

Filesize
23.2MB

MD5
a271a8872ec0b939ee5e916a32de54d4

SHA1
1cc25e11d7279397b23e7f269520ea368f64dc69

SHA256
e3bbdf637758da223baca67a4b599394cc9b2f494afc78f7130995765758ec33

SHA512
f76ae2df69ad07df5da42352850fd378407a9cdb1394731ef221dab837c6dce3baa3f53dfa06ff5cf94db4925874d291c52db847c11c43eb7d8bdaae110a56c7

Download Submit
\Users\Admin\AppData\Local\Temp\dll\MultiLanguage.dll

Filesize
1.1MB

MD5
e5deed5b2639f46a995fb2b86fea744c

SHA1
ed64c2fd09ae354150f987db483003898643db34

SHA256
39bb4e370a8adb24a140652982a64f582cf7e48c5b4fdb690bdb42a23c0f9056

SHA512
732f7b885cb9f41b300feba013a5c8f690c5431cd0e60b05bbceb05d680e55d5fee87fa91c1fe818470ea04e205013bcc8450c65a2b2637d49a1517516459663

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\ButtonEvent.dll

Filesize
4KB

MD5
fad9d09fc0267e8513b8628e767b2604

SHA1
bea76a7621c07b30ed90bedef4d608a5b9e15300

SHA256
5d913c6be9c9e13801acc5d78b11d9f3cd42c1b3b3cad8272eb6e1bfb06730c2

SHA512
b39c5ea8aea0640f5a32a1fc03e8c8382a621c168980b3bc5e2897932878003b2b8ef75b3ad68149c35420d652143e2ef763b6a47d84ec73621017f0273e2805

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\FindProcDLL.dll

Filesize
31KB

MD5
83cd62eab980e3d64c131799608c8371

SHA1
5b57a6842a154997e31fab573c5754b358f5dd1c

SHA256
a6122e80f1c51dc72770b4f56c7c482f7a9571143fbf83b19c4d141d0cb19294

SHA512
91cfbcc125600ec341f5571dcf1e4a814cf7673f82cf42f32155bd54791bbf32619f2bb14ae871d7996e9ddecdfcc5db40caa0979d6dfba3e73cfe8e69c163c9

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\MsgDLL.dll

Filesize
384KB

MD5
21a7a47784121c1eca0895fa4ba5d99b

SHA1
d08e1179b3ebeb43f84172e98db24fb33ab98bf4

SHA256
9fb07055f1fbfeaa5ef672a7c7e4463042c2902b1332713ebff0800cb40350c5

SHA512
5888a1de5b0a271f5f2ce5c27ced4e9aba29485b8d3d982ca76b54c000134b52c3e35c36c298ff0a2e5ce764d8f6e8bd60705babf436a2ab78899d3824fb7abf

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\SkinBtn.dll

Filesize
4KB

MD5
e4ec95271ff1bcebab49bdfed6817a22

SHA1
2c03e97f4773aea80ecdb98a1482e5896fe4677b

SHA256
ee1c06692a757473737b0ebdef16f77b63afac864d0890022d905e4873737dd6

SHA512
771a527133806307a1b17b7e956d6a3c16e9bc675bf084b43204ae784a057dac2726dbf90645692876043a4e7365ba8825c167621fde4760c79cd84679e2aa3d

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\SkinProgress.dll

Filesize
4KB

MD5
cc037c4703d3ec257efeef2ce0a1a20e

SHA1
b3d6cc8f687a31fb2c1a5921a38de9429af20502

SHA256
888b32ecbc37ce67d4edc28d894cba0a4f4e2488cfc2212d1af011bd0bfe97ff

SHA512
120bfa0a68775bef04c1863023b0e73a41982284fb36da7f497fbb7d5ed8631ad02fa09951424d339f6fefaa90a17c12f949dd68bb33bad64b1b7cace489d2a7

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\System.dll

Filesize
11KB

MD5
c17103ae9072a06da581dec998343fc1

SHA1
b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d

SHA256
dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f

SHA512
d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\TestDLL.dll

Filesize
2.1MB

MD5
cc5d6b36e94b8ecbbc71b72adea6abf6

SHA1
90584abfc8505693716e45f2659749837bd8ef0b

SHA256
e3077ca9e26ddeb0ec9cf0d67bc982e50caef154e1a1d5dd6ccfa1ca9e86093d

SHA512
c5ee062f70e257c03245813953593fb5ceb3d928f4193902dade0d0b203cee7462e9b3141c6d30b14519fed210b6490e424a7384f7403777cedf9449cf068488

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\WndProc.dll

Filesize
3KB

MD5
f0cb331dd4bd92a6ebce45e7cd1cf5ef

SHA1
b66ea0c10b08750295f2dc7c170b370402393214

SHA256
e7b3115fa2ce4a8fa09beeefa4fb634a474197f38a2854ce9be60d0a26016458

SHA512
7c33418f39b91ae0d4cc8b560f516bac293593eef539832815028878c2058bf1691c2d767a039cf312989839071f2f6f0b6d9d59835acdfff6b448bf1ffea271

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\nsDialogs.dll

Filesize
9KB

MD5
c10e04dd4ad4277d5adc951bb331c777

SHA1
b1e30808198a3ae6d6d1cca62df8893dc2a7ad43

SHA256
e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a

SHA512
853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e

Download Submit
\Users\Admin\AppData\Local\Temp\nsd27DC.tmp\progress.dll

Filesize
208KB

MD5
10d73356f0dace1ddd9be92d52577375

SHA1
c29974f2c5c5ecaffdf3cabf570a885690647155

SHA256
7d936aebee57e04338308ed8c52ce2c24e21b2978721326be3eb9e90c080834e

SHA512
4864585412734b4d0c5ae7af0c5e5fd3f70646d5ce72ba55594a2051aded0750a9f727c78a28e5f34a0f4dcc9bd0581c53e87c0144f049070c801680c9258cee

Download Submit
memory/2256-226-0x0000000002960000-0x0000000002998000-memory.dmp

Filesize
224KB

Download
memory/2256-158-0x00000000004F0000-0x00000000004FB000-memory.dmp

Filesize
44KB

Download
memory/2256-3302-0x0000000004270000-0x00000000042D3000-memory.dmp

Filesize
396KB

Download