b495d6f781886d932e3f0b7c19422e3e4b09fb89157ddfe563c7d313e5a7d698

Sharing

Copy URL Twitter E-mail

General

Target

b495d6f781886d932e3f0b7c19422e3e4b09fb89157ddfe563c7d313e5a7d698
Size

1.2MB
MD5

ac2aef274b55cb6c089b35cbf2aab849
SHA1

c6fc190fdd9ab771a2f6125595a744aaec1fd769
SHA256

b495d6f781886d932e3f0b7c19422e3e4b09fb89157ddfe563c7d313e5a7d698
SHA512

977935bb36d9a1a5d8068d9268a1603f61acddf81e601bab58f4498f30623d93e1459f4fe085948bd8e0e6c2b60398432df68d5e1f6433446b93bc4ef3d007bc
SSDEEP

24576:rlmLZstNoG+utcD/YrzQC5z5tunIi+dpO1ZfF4/XFQPy4CY:RqLA0/uzv5m+dqfF4/Ka4CY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b495d6f781886d932e3f0b7c19422e3e4b09fb89157ddfe563c7d313e5a7d698

Files

b495d6f781886d932e3f0b7c19422e3e4b09fb89157ddfe563c7d313e5a7d698
.dll windows:6 windows x64 arch:x64

6ee9000c9bbc78015ee828210d9ea50e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\000Develop\EasyVision\000_exe\Release\EVision.PublicUtil.pdb

Imports

api-ms-win-crt-string-l1-1-0

isalnum

api-ms-win-crt-heap-l1-1-0

_callnewh

api-ms-win-crt-math-l1-1-0

atan2

api-ms-win-crt-runtime-l1-1-0

_beginthreadex

vcruntime140_1

__CxxFrameHandler4

vcruntime140

_purecall

msvcp140

?_Xout_of_range@std@@YAXPEBD@Z

oleaut32

SysAllocString

gdi32

CreateDIBitmap

kernel32

InitializeSListHead

hklicense

?GetLisenceID4HK@LisenceID4HK@@SA_NPEAH@Z

hvboxlicense

?GetLisenceID4VB@LisenceID4VB@@SA_NPEAHPEAN@Z

opencv_world455

??1Mat@cv@@QEAA@XZ

dbghelp

MiniDumpWriteDump

evision.cc

?ToPointCloud@ccHObjectCaster@@SAPEAVccPointCloud@@PEAVccHObject@@PEA_N@Z

user32

EnableWindow

qt5gui

??1QFontMetrics@@QEAA@XZ

qt5widgets

?resizeEvent@QWidget@@MEAAXPEAVQResizeEvent@@@Z

d2d1

ord2

freeimage

FreeImage_AllocateT

qt5core

?write@QIODevice@@QEAA_JPEBD_J@Z

Sections

.text
Size: - Virtual size: 717KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 777B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ee9000c9bbc78015ee828210d9ea50e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-runtime-l1-1-0

vcruntime140_1

vcruntime140

msvcp140

oleaut32

gdi32

kernel32

hklicense

hvboxlicense

opencv_world455

dbghelp

evision.cc

user32

qt5gui

qt5widgets

d2d1

freeimage

qt5core

Sections

.text Size: - Virtual size: 717KB

.rdata Size: - Virtual size: 201KB

.data Size: - Virtual size: 22KB

.pdata Size: - Virtual size: 27KB

.idata Size: - Virtual size: 45KB

.tls Size: 1024B - Virtual size: 777B

.00cfg Size: - Virtual size: 373B

.vdata Size: - Virtual size: 1KB

.text Size: - Virtual size: 1.7MB

.data Size: - Virtual size: 318KB

.text Size: 1.1MB - Virtual size: 1.1MB

.data Size: 65KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 124B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: - Virtual size: 717KB

.rdata
Size: - Virtual size: 201KB

.data
Size: - Virtual size: 22KB

.pdata
Size: - Virtual size: 27KB

.idata
Size: - Virtual size: 45KB

.tls
Size: 1024B - Virtual size: 777B

.00cfg
Size: - Virtual size: 373B

.vdata
Size: - Virtual size: 1KB

.text
Size: - Virtual size: 1.7MB

.data
Size: - Virtual size: 318KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.data
Size: 65KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 124B

.rsrc
Size: 1KB - Virtual size: 1KB