f56cefdd7292bb8936824c4964c621d149fbc873aaa0736a073303d27113dbb5

Sharing

Copy URL Twitter E-mail

General

Target

f56cefdd7292bb8936824c4964c621d149fbc873aaa0736a073303d27113dbb5
Size

83KB
MD5

73233fc358dbbda7ff2eabc7453a0420
SHA1

7646427ba26af314012605f678aaed0161ea2604
SHA256

f56cefdd7292bb8936824c4964c621d149fbc873aaa0736a073303d27113dbb5
SHA512

06168404b58fc95a1a2c68cd224371e3554b7482709a691bbefe93a222002dbf7a526f24ce548f101a23925eafe48604dc1324432f53d66b7beaf04be75b3355
SSDEEP

1536:ud5mx8R6xzrXCrYwfo9hzwRI9NXIul6SVdJssWdcdmhc7uWIIPA+ue:85mI2/XCrYrhz8wJJmNWISA+ue

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f56cefdd7292bb8936824c4964c621d149fbc873aaa0736a073303d27113dbb5

Files

f56cefdd7292bb8936824c4964c621d149fbc873aaa0736a073303d27113dbb5
.dll windows:6 windows x86 arch:x86

377588a8d238fe268c587684e21fc1fc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\assemblage\Builds\2963861384891948602evbgdbnlgx\OpenVideoCall_Windows-master\Language\English\assemblage_outdir_bin\English.pdb

Imports

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
EncodePointer
RaiseException
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapAlloc
HeapFree
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
GetProcessHeap
GetStdHandle
GetFileType
GetStringTypeW
HeapSize
HeapReAlloc
SetStdHandle
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
CreateFileW
CloseHandle
WriteConsoleW
DecodePointer

Exports

Exports

IDS_CHN_AES128CCM
IDS_CHN_AES128CTR
IDS_CHN_AES128GCM
IDS_CHN_AES128XTS
IDS_CHN_AES256CCM
IDS_CHN_AES256CTR
IDS_CHN_AES256GCM
IDS_CHN_AES256XTS
IDS_CHN_BTBACK
IDS_CHN_BTJOIN
IDS_CHN_BTTEST
IDS_CHN_CHTIP
IDS_CHN_DSC1
IDS_CHN_DSC2
IDS_CHN_ENCTYPE
IDS_CHN_KEYTIP
IDS_CHN_TITLE
IDS_CONTACT
IDS_DEVICE_AUDIOIN
IDS_DEVICE_AUDIOOUT
IDS_DEVICE_BTNTEST
IDS_DEVICE_BTNTESTOFF
IDS_DEVICE_CAMERA
IDS_DEVICE_CANCEL
IDS_DEVICE_CONFIRM
IDS_DEVICE_VOLUME
IDS_LOGO_AGORAWEB
IDS_LOGO_DESC
IDS_PHONENUMBER
IDS_PRE_BTNOPT
IDS_PRE_BTNWEB
IDS_PRE_OPTDSC1
IDS_PRE_OPTDSC2
IDS_PRE_TITLE
IDS_PRE_WEBDSC1
IDS_PRE_WEBDSC2
IDS_SET_BTCONFIRM
IDS_SET_CODEC
IDS_SET_MFR
IDS_SET_MR
IDS_SET_RESOLUTION
IDS_SET_SAVESETTING
IDS_SET_SWAPWH
IDS_TITLE
IDS_VIDEO_MOREDEVICE
IDS_VIDEO_MOREFILTER
IDS_VIDEO_MOREINFO
IDS_VIDEO_SCRSHARE
IDS_VIDEO_WBGUEST
IDS_VIDEO_WBHOST
IDS_VIDEO_WNDSHARE

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

377588a8d238fe268c587684e21fc1fc

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 47KB - Virtual size: 47KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 47KB - Virtual size: 47KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 4KB - Virtual size: 3KB