【摄影资源馆】剪映国际版2[.]6版本[.]rar

Sharing

Copy URL

Twitter E-mail

General

Target

【摄影资源馆】剪映国际版2.6版本.rar
Size

639.5MB
MD5

d09d236dcdb66ec49cdca2d48dffeead
SHA1

2cbe6208ca83f84ef23870322bfea4c994b84242
SHA256

630368cb7d4d52b9da8945578798f22e8f8f43eb4cce8501bc7ef050ed963d55
SHA512

bb99c4f17e7a9536dc83fc83cce5606b2a1128c243e08357e3f381bc202c6fe9ef710c192f5380923249c4779ca8cc21fcbc7789cc0c8bc7de8baad96ebee320
SSDEEP

12582912:LX2Yjg0yqOseaTmE3s3dXUvQ57zET/dCQYodvOqQjN3OIMWQg4SF4:LzjSqOse4mvtt57wYEWjWW4SF4

Score

4^/10

pdf link qr

Malware Config

Signatures

PDF has QR code that contains a HTTP URL
PDFs with URL QR codes are often used for phishing
pdf qr
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link
One or more HTTP URLs in qr code identified
Detects presence of HTTP links in QR codes.
qr link

Files

【摄影资源馆】剪映国际版2.6版本.rar
.rar
CapCut_2_6_0_814_capcutpc_0_creatortool.exe
.exe windows:6 windows x86 arch:x86

f53c04869337445f98045f688558b108

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

13/01/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:df:4d:93:8e:75:e6:3d:64:8a:be:02:29:5c:d3:3c
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

01/08/2022, 00:00

Not After

30/07/2025, 23:59

Subject

SERIALNUMBER=201923456H,CN=Bytedance Pte. Ltd.,O=Bytedance Pte. Ltd.,L=Singapore,C=SG,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13025347

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

af:5d:f0:d0:ed:3d:c5:05:e5:7f:bd:98:a1:fa:7f:eb:55:55:b9:a1:7b:cc:bf:ce:5b:18:e1:af:36:56:2e:3c
Signer

Actual PE Digest

af:5d:f0:d0:ed:3d:c5:05:e5:7f:bd:98:a1:fa:7f:eb:55:55:b9:a1:7b:cc:bf:ce:5b:18:e1:af:36:56:2e:3c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Admin\code\LVInstaller\VideofusionInstaller\build\CC_RELEASE\JYInstaller.pdb

Imports

kernel32

CreateProcessW
GetLocaleInfoW
GetUserDefaultLCID
GetDiskFreeSpaceExW
GetVolumeInformationW
GetCurrentProcessId
TerminateProcess
GetLocalTime
GetTickCount
GetSystemDirectoryW
lstrcmpW
CopyFileW
MoveFileExW
TerminateThread
GetPrivateProfileStringA
WritePrivateProfileStringA
MoveFileW
MapViewOfFile
InitializeCriticalSection
SetEvent
ResetEvent
CreateEventW
CreateMutexW
ReleaseMutex
GetStdHandle
GetFileType
GetNativeSystemInfo
FindFirstFileExW
OutputDebugStringA
GetUserDefaultLangID
SetEndOfFile
SetFilePointerEx
FlushFileBuffers
QueryPerformanceCounter
GetSystemTimeAsFileTime
CreateThread
IsDebuggerPresent
GetModuleHandleExW
TlsGetValue
TlsSetValue
TlsAlloc
TlsFree
lstrcmpiW
GetTimeZoneInformation
FreeEnvironmentStringsW
GetEnvironmentStringsW
ReadConsoleW
GetOEMCP
GetACP
IsValidCodePage
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
ExitProcess
SetStdHandle
GetConsoleMode
GetConsoleCP
GetCPInfo
RtlUnwind
GetStringTypeW
EncodePointer
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
OutputDebugStringW
LoadLibraryExA
UnmapViewOfFile
MapViewOfFileEx
CreateFileMappingW
Sleep
LeaveCriticalSection
EnterCriticalSection
SetFilePointer
GetCurrentProcess
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
FreeLibrary
OpenProcess
WaitForSingleObject
LocalFree
GetVersionExW
SetLastError
SetFileAttributesW
MultiByteToWideChar
ReadFile
GetFileSize
WideCharToMultiByte
CloseHandle
SetErrorMode
GetCommandLineW
LoadLibraryExW
ProcessIdToSessionId
FlushInstructionCache
GetCurrentThreadId
WriteFile
CreateFileW
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
RemoveDirectoryW
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
CreateDirectoryW
FindResourceW
LoadLibraryW
SizeofResource
LockResource
LoadResource
GetProcAddress
GetModuleHandleW
FindResourceExW
DeleteCriticalSection
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
RaiseException
DecodePointer
GetTempPathW
DeleteFileW
WriteConsoleW
SetEnvironmentVariableA

user32

MapWindowPoints
GetParent
SetWindowPos
SetTimer
KillTimer
PostQuitMessage
DefWindowProcW
SendMessageW
DispatchMessageW
TranslateMessage
GetMessageW
GetDesktopWindow
GetDC
UnregisterClassW
DestroyWindow
GetSystemMetrics
GetWindowRect
GetCursorPos
GetWindowLongW
SetWindowLongW
LoadCursorW
MessageBoxW
PeekMessageW
PostMessageW
ShowWindow
IsWindowVisible
IsIconic
CharNextW
SetFocus
SetForegroundWindow
GetMonitorInfoW
MonitorFromWindow
GetWindow
LoadImageW
GetWindowDC
ReleaseDC
SetWindowTextW
GetWindowPlacement
OffsetRect
UpdateLayeredWindow
ScreenToClient
CreateDialogParamW
wsprintfW
SetCursor
GetClientRect

gdi32

CreateDIBSection
DeleteDC
GetDeviceCaps
DeleteObject
GetStockObject
CreateCompatibleDC
SelectObject
GetObjectA

advapi32

RegOpenKeyExW
RegDeleteValueW
RegQueryInfoKeyW
RegEnumKeyExW
LookupPrivilegeValueW
AdjustTokenPrivileges
GetTokenInformation
DuplicateTokenEx
OpenProcessToken
SetNamedSecurityInfoW
GetNamedSecurityInfoW
IsValidSid
InitializeSid
InitializeAcl
GetSidSubAuthority
GetSidLengthRequired
GetLengthSid
GetAclInformation
GetAce
CopySid
AddAce
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyW
RegQueryValueExW
SetEntriesInAclW
BuildExplicitAccessWithNameW

shell32

CommandLineToArgvW
SHFileOperationW
SHGetFolderPathW
SHChangeNotify
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW

ole32

PropVariantClear
CoInitializeEx
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

VariantClear
SysFreeString
VarUI4FromStr
SysAllocStringLen
SysAllocString

shlwapi

SHStrDupW
ord176
SHSetValueW
SHGetValueW
PathIsDirectoryW
PathGetDriveNumberW
PathFindExtensionW
ord12
PathIsNetworkPathW
StrStrIW
PathAppendW
PathRemoveFileSpecW
PathFileExistsW

comctl32

InitCommonControlsEx
_TrackMouseEvent

gdiplus

GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetImageAttributesColorMatrix
GdipDrawString
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipDrawImagePointRectI
GdipAlloc
GdiplusShutdown
GdiplusStartup
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipTranslateWorldTransform
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipCreateFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteFont
GdipCloneImage
GdipDisposeImage
GdipDeleteGraphics
GdipCreateFromHDC
GdipGraphicsClear
GdipSetClipRectI
GdipRestoreGraphics
GdipSaveGraphics
GdipDrawImageRectRectI
GdipFillRectangleI
GdipSetSmoothingMode
GdipGetImageHeight
GdipGetImageWidth
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipSetTextRenderingHint
GdipFree

Exports

Exports

GetHandleVerifier
_timeBeginPeriod@4
_timeEndPeriod@4
_timeGetTime@0

Sections

.text
Size: 530KB - Virtual size: 529KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Readme.pdf
.pdf
- https://weixin.qq.com/f/MCRdWdoWcvtM6-2TF3ceyQg
- https://www.sheyingzyg.com/qqqun
安装教程.txt
软件更新下载.url
.url
远程安装服务.jpg
.jpg
- https://u.wechat.com/MIExIvayZBkNyDWPyH-UWMs

Sharing

General

Malware Config

Signatures

Files

f53c04869337445f98045f688558b108

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5cCertificate

Key Usages

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31Certificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

06:df:4d:93:8e:75:e6:3d:64:8a:be:02:29:5c:d3:3cCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

af:5d:f0:d0:ed:3d:c5:05:e5:7f:bd:98:a1:fa:7f:eb:55:55:b9:a1:7b:cc:bf:ce:5b:18:e1:af:36:56:2e:3cSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

gdiplus

Exports

Exports

Sections

.text Size: 530KB - Virtual size: 529KB

.rdata Size: 112KB - Virtual size: 111KB

.data Size: 12KB - Virtual size: 27KB

.tls Size: 512B - Virtual size: 2B

.rsrc Size: 1.2MB - Virtual size: 1.2MB

.reloc Size: 26KB - Virtual size: 25KB

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

06:df:4d:93:8e:75:e6:3d:64:8a:be:02:29:5c:d3:3c
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

af:5d:f0:d0:ed:3d:c5:05:e5:7f:bd:98:a1:fa:7f:eb:55:55:b9:a1:7b:cc:bf:ce:5b:18:e1:af:36:56:2e:3c
Signer

.text
Size: 530KB - Virtual size: 529KB

.rdata
Size: 112KB - Virtual size: 111KB

.data
Size: 12KB - Virtual size: 27KB

.tls
Size: 512B - Virtual size: 2B

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

.reloc
Size: 26KB - Virtual size: 25KB