d8b5df53616370d3760037e7d5e0c205e4ec1789bd1b23e5804c4bbf5ba55f55

Sharing

Copy URL Twitter E-mail

General

Target

d8b5df53616370d3760037e7d5e0c205e4ec1789bd1b23e5804c4bbf5ba55f55
Size

355KB
MD5

9600b96096af7ddf3d471dca22011101
SHA1

0937f444b5f7d4118034870324df3ed2d28313d5
SHA256

d8b5df53616370d3760037e7d5e0c205e4ec1789bd1b23e5804c4bbf5ba55f55
SHA512

c447497f7c1cd4d7a19c128e1d8f7ccecdf8165d16b20209e494f84572d00d6b7990cdd34f7532a01e3187802f9ac72a40447b4abc3f54f082f8005828125139
SSDEEP

6144:GC20UycFriXM1UyMbS1ITyzrrppNclfzEBeMpTdNAqbvFf251eVUrS20:GC2acFCyMbOzrrppWfzK/Td7bAX4iS2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d8b5df53616370d3760037e7d5e0c205e4ec1789bd1b23e5804c4bbf5ba55f55

Files

d8b5df53616370d3760037e7d5e0c205e4ec1789bd1b23e5804c4bbf5ba55f55
.dll windows:6 windows x64 arch:x64

179556f9c61de7c537ad18a4ff5797d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

Imports

libvlccore

es_format_Clean
es_format_Init
var_Create
var_GetChecked
var_Inherit
vlc_close
vlc_dialog_display_error
vlc_find_iso639
vlc_frame_Alloc
vlc_frame_Release
vlc_gettext
vlc_meta_Set
vlc_mutex_init
vlc_mutex_lock
vlc_mutex_unlock
vlc_object_Log
vlc_object_vaLog
vlc_open
vlc_stream_Peek
vlc_stream_Read
vlc_stream_Seek
vlc_stream_vaControl
vlc_tick_sleep
vlc_timer_create
vlc_timer_destroy
vlc_timer_schedule
vlc_towc

msvcrt

___lc_codepage_func
___mb_cur_max_func
__iob_func
_abs64
_access
_amsg_exit
_assert
_close
_errno
_findclose
_fstat64
_initterm
_lock
_lseeki64
_mkdir
_open
_read
_stat64
_strdup
_stricmp
_strnicmp
_strtoi64
_strtoui64
_unlock
_wassert
_wfindfirst64
_wfindnext64
_wopen
_write
_wstat64
abort
atoi
calloc
fputc
free
fwrite
getc
getenv
isprint
isspace
isxdigit
localeconv
malloc
memcmp
memcpy
memmove
memset
perror
rand
realloc
srand
strchr
strcmp
strcpy
strerror
strlen
strncat
strncmp
strncpy
strtok
strtol
strtoul
tolower
ungetc
vfprintf
wcslen

kernel32

CloseHandle
CreateFileA
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
GetCurrentProcess
GetDriveTypeA
GetLastError
GetLogicalDrives
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetTimeZoneInformation
InitializeCriticalSection
IsDBCSLeadByteEx
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
ReadFile
SetFilePointer
Sleep
TerminateProcess
TlsGetValue
VirtualProtect
VirtualQuery
WideCharToMultiByte

shell32

SHGetFolderPathA

Exports

Exports

vlc_entry
vlc_entry_api_version
vlc_entry_copyright
vlc_entry_license

Sections

.text
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

179556f9c61de7c537ad18a4ff5797d5

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libvlccore

msvcrt

kernel32

shell32

Exports

Exports

Sections

.text Size: 305KB - Virtual size: 304KB

.rdata Size: 37KB - Virtual size: 36KB

.buildid Size: 512B - Virtual size: 53B

.data Size: 1024B - Virtual size: 5KB

.pdata Size: 7KB - Virtual size: 7KB

.tls Size: 512B - Virtual size: 16B

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 200B

/4 Size: 512B - Virtual size: 32B

.text
Size: 305KB - Virtual size: 304KB

.rdata
Size: 37KB - Virtual size: 36KB

.buildid
Size: 512B - Virtual size: 53B

.data
Size: 1024B - Virtual size: 5KB

.pdata
Size: 7KB - Virtual size: 7KB

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 200B

/4
Size: 512B - Virtual size: 32B