Overview

overview

7

Static

static

3

DDACLSys.dll

windows10-2004-x64

1

DDDS.dll

windows10-2004-x64

1

DDOIProxy.dll

windows10-2004-x64

1

DDORes.dll

windows10-2004-x64

1

DHolograph...ay.dll

windows10-2004-x64

1

DdcClaimsApi.dll

windows10-2004-x64

1

DdcComImpl...op.dll

windows10-2004-x64

1

DefaultDev...er.dll

windows10-2004-x64

1

DefaultPri...er.dll

windows10-2004-x64

1

DesktopShe...ct.dll

windows10-2004-x64

1

DesktopShellExt.dll

windows10-2004-x64

1

DesktopSwi...el.dll

windows10-2004-x64

1

DesktopVie...ub.dll

windows10-2004-x64

7

DesktopVie...er.dll

windows10-2004-x64

1

DevDispIte...er.dll

windows10-2004-x64

1

DevPropMgr.dll

windows10-2004-x64

1

DevQueryBroker.dll

windows10-2004-x64

1

DeveloperO...rs.dll

windows10-2004-x64

1

DeviceCenter.dll

windows10-2004-x64

1

DeviceComp...ll.dll

windows10-2004-x64

1

DeviceCredential.dll

windows10-2004-x64

1

DeviceDire...nt.dll

windows10-2004-x64

1

DeviceDisp...er.dll

windows10-2004-x64

1

DeviceDriv...nt.dll

windows10-2004-x64

1

DeviceElem...ce.dll

windows10-2004-x64

1

DeviceFlow...el.dll

windows10-2004-x64

1

DeviceMeta...nt.dll

windows10-2004-x64

1

DevicePairing.dll

windows10-2004-x64

1

DevicePair...EM.dll

windows10-2004-x64

1

DevicePair...er.dll

windows10-2004-x64

1

DevicePair...xy.dll

windows10-2004-x64

7

DeviceReac...on.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    System32Problems12.zip

  • Size

    18.3MB

  • MD5

    bf7b8b03910313c7a2a114633c4215f9

  • SHA1

    dec16555e87c8fd1a2ee6f4080871f7570d9840c

  • SHA256

    81ebbb378c833448b5b4284cd6f1db0ef290d79f50345772648baef89258c3d2

  • SHA512

    0fed30d258ca64503142f065df91b3288a57ada81f489ac0995812897c5e48792cc56825bb1ba3d39410944431762aced234788415a8ff1449096fa9d6db5398

  • SSDEEP

    393216:OGHbvgJJUVx7Rk2WmEkkdIg1fMJCEQPXP5Gy4kEkP7ECGAC:1HbviyxlkQkNC7QfMTyP7ECG/

Score
3/10

Malware Config

Signatures

  • Unsigned PE 78 IoCs

    Checks for missing Authenticode signature.

Files

  • System32Problems12.zip
    .zip
  • DDACLSys.dll
    .dll windows:10 windows x64 arch:x64

    738644f915ae8ff7abcf279e96d137b4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DDDS.dll
    .dll windows:10 windows x64 arch:x64

    a75ba415d35b69e4f89ec8d4a7f7e316


    Headers

    Imports

    Exports

    Sections

  • DDOIProxy.dll
    .dll windows:10 windows x64 arch:x64

    346b4eaaf0d7fb11f5bfde9ab3e86bf0


    Headers

    Imports

    Exports

    Sections

  • DDORes.dll
    .dll windows:10 windows x64 arch:x64

    01176d363632cb2c1f181c9b962b2905


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DHolographicDisplay.dll
    .dll windows:10 windows x64 arch:x64

    10b0a4ee27d1b33b9c2d41a92740ba93


    Headers

    Imports

    Exports

    Sections

  • DdcClaimsApi.dll
    .dll windows:10 windows x64 arch:x64

    c86fec4642b491bff6a1fff9f224b5d7


    Headers

    Imports

    Exports

    Sections

  • DdcComImplementationsDesktop.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    5a09cd9c8c30a7b59647ee386397c30e


    Headers

    Imports

    Exports

    Sections

  • DefaultDeviceManager.dll
    .dll windows:10 windows x64 arch:x64

    030c83e628b3c4965a3ac9cedaeaa781


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DefaultPrinterProvider.dll
    .dll windows:10 windows x64 arch:x64

    7748a257a029540696f5131bf45694b3


    Headers

    Imports

    Exports

    Sections

  • DesktopShellAppStateContract.dll
    .dll windows:10 windows x64 arch:x64

    5537d793019810393ba9edaf2a94151a


    Headers

    Imports

    Exports

    Sections

  • DesktopShellExt.dll
    .dll windows:10 windows x64 arch:x64

    a57e7f02c51b8e93e8bc2cb080f75287


    Headers

    Imports

    Exports

    Sections

  • DesktopSwitcherDataModel.dll
    .dll windows:10 windows x64 arch:x64

    048209793e498de1cc84b7a17d1a8b04


    Headers

    Imports

    Exports

    Sections

  • DesktopView.Internal.Broker.ProxyStub.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    964e01e4e37cbb8c9793b44052555ddb


    Headers

    Imports

    Exports

    Sections

  • DesktopView.Internal.Broker.dll
    .dll windows:10 windows x64 arch:x64

    b3c3fe0db9b591deca779096f71306ae


    Headers

    Imports

    Exports

    Sections

  • DevDispItemProvider.dll
    .dll windows:10 windows x64 arch:x64

    8089ba1b3f1c44442ae3f651df4db9c4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DevPropMgr.dll
    .dll windows:10 windows x64 arch:x64

    bf3ccb8532e6e12eab1be274b38c1140


    Headers

    Imports

    Exports

    Sections

  • DevQueryBroker.dll
    .dll windows:10 windows x64 arch:x64

    aa1960374551f861a9d18e3ac48706e5


    Headers

    Imports

    Exports

    Sections

  • DeveloperOptionsSettingsHandlers.dll
    .dll windows:10 windows x64 arch:x64

    74f7aa812d834e9c4e1eaff7e28214f2


    Headers

    Imports

    Exports

    Sections

  • DeviceCenter.dll
    .dll windows:10 windows x64 arch:x64

    be80579237a3da309485cc19e04f6090


    Headers

    Imports

    Exports

    Sections

  • DeviceCompanionAppInstall.dll
    .dll windows:10 windows x64 arch:x64

    8ea51fbde2de9c92e1654d1ae32de75d


    Headers

    Imports

    Exports

    Sections

  • DeviceCredential.dll
    .dll windows:10 windows x64 arch:x64

    42d80fcfce272c6f0b82bd8fc0816a61


    Headers

    Imports

    Exports

    Sections

  • DeviceDirectoryClient.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    e6106de4d228d4419b52db25240755f2


    Headers

    Imports

    Exports

    Sections

  • DeviceDisplayStatusManager.dll
    .dll windows:10 windows x64 arch:x64

    7bdd5d97ddbb00347e8c2b851f153747


    Headers

    Imports

    Exports

    Sections

  • DeviceDriverRetrievalClient.dll
    .dll windows:10 windows x64 arch:x64

    b23865b6e568bb5ccd2a5c2294d469bb


    Headers

    Imports

    Exports

    Sections

  • DeviceElementSource.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    e93697b6e8345fc8067e62c1cfa77307


    Headers

    Imports

    Exports

    Sections

  • DeviceFlows.DataModel.dll
    .dll windows:10 windows x64 arch:x64

    dfab41dd3ee6d5d332ff9697c1cf43e4


    Headers

    Imports

    Exports

    Sections

  • DeviceMetadataRetrievalClient.dll
    .dll windows:10 windows x64 arch:x64

    5cc71320ed4506ee2f27c17a443c4082


    Headers

    Imports

    Exports

    Sections

  • DevicePairing.dll
    .dll windows:10 windows x64 arch:x64

    14b5d52ef5842e2196a6c09bb8b3a22a


    Headers

    Imports

    Exports

    Sections

  • DevicePairingExperienceMEM.dll
    .dll windows:10 windows x64 arch:x64

    ed6bfe92173e48d1b1bf213b60e7f04f


    Headers

    Imports

    Exports

    Sections

  • DevicePairingFolder.dll
    .dll windows:10 windows x64 arch:x64

    e1e9d023e0b30afb13fb6ce48faa33e1


    Headers

    Imports

    Exports

    Sections

  • DevicePairingProxy.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    6386566910424a2a3b27a92dc0f44287


    Headers

    Imports

    Exports

    Sections

  • DeviceReactivation.dll
    .dll windows:10 windows x64 arch:x64

    19fa5e65f563721677b3792860b17f95


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DeviceSetupManager.dll
    .dll windows:10 windows x64 arch:x64

    71dac2087c38c765c2634bb25106c1c2


    Headers

    Imports

    Exports

    Sections

  • DeviceSetupManagerAPI.dll
    .dll windows:10 windows x64 arch:x64

    cd8a80e8e7870ccd6cfa670be7652559


    Headers

    Imports

    Exports

    Sections

  • DeviceSetupStatusProvider.dll
    .dll windows:10 windows x64 arch:x64

    68c8c6a7bcf20ccf19d13fc30750798a


    Headers

    Imports

    Exports

    Sections

  • DeviceSoftwareInstallationClient.dll
    .dll windows:10 windows x64 arch:x64

    2e92e2de271985db587033ac0480077b


    Headers

    Imports

    Exports

    Sections

  • DeviceUpdateAgent.dll
    .dll windows:10 windows x64 arch:x64

    4164d9f7e0ac459a4e84e311ff4f7808


    Headers

    Imports

    Exports

    Sections

  • DeviceUxRes.dll
    .dll windows:10 windows x64 arch:x64

    38657e7c339116aa7ab2794c8f34e3ef


    Headers

    Imports

    Sections

  • DevicesFlowBroker.dll
    .dll windows:10 windows x64 arch:x64

    3495cd7eeeae092b46bbedeace4c71e7


    Headers

    Imports

    Exports

    Sections

  • DfsShlEx.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    1aee46b0b1edd08de52d67312d6ca59d


    Headers

    Imports

    Exports

    Sections

  • DiagCpl.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    3c76fbe0957854be6d18cba24999dd3c


    Headers

    Imports

    Exports

    Sections

  • DiagSvc.dll
    .dll windows:10 windows x64 arch:x64

    685984b67b7e3047c450c5d49ccc3c39


    Headers

    Imports

    Exports

    Sections

  • DiagnosticDataSettings.dll
    .dll windows:10 windows x64 arch:x64

    53383b9c706371f0cf333649b917def7


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DiagnosticInvoker.dll
    .dll windows:10 windows x64 arch:x64

    147b2bb24da72c552e22568661084f87


    Headers

    Imports

    Exports

    Sections

  • DiagnosticLogCSP.dll
    .dll windows:10 windows x64 arch:x64

    648c15289283a548a8401f0eb4d4ade5


    Headers

    Imports

    Exports

    Sections

  • DictationManager.dll
    .dll windows:10 windows x64 arch:x64

    7ed97fc6318a850c0051441b403ff143


    Headers

    Imports

    Exports

    Sections

  • Direct2DDesktop.dll
    .dll windows:10 windows x64 arch:x64

    1f8154bcb151e1f70412cdb89a68d8cc


    Headers

    Imports

    Exports

    Sections

  • DismApi.dll
    .dll windows:10 windows x64 arch:x64

    ae3f7dd39dc453580a0993b611df7af2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DispBroker.Desktop.dll
    .dll windows:10 windows x64 arch:x64

    49d0796ac58f58c3da90bde343aa8b3a


    Headers

    Imports

    Exports

    Sections

  • DispBroker.dll
    .dll windows:10 windows x64 arch:x64

    e7ab11b43617964a96648c459c2a9ad5


    Headers

    Imports

    Exports

    Sections

  • Display.dll
    .dll windows:10 windows x64 arch:x64

    2a1bad533a3588a112fd3e8da9f91104


    Headers

    Imports

    Exports

    Sections

  • dciman32.dll
    .dll windows:10 windows x64 arch:x64

    c9e2fd2fd69e96e998130262c55a01c8


    Headers

    Imports

    Exports

    Sections

  • dcntel.dll
    .dll windows:10 windows x64 arch:x64

    a9eef45c485cece8c68713cad388b11f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dcomp.dll
    .dll windows:10 windows x64 arch:x64

    b6a587f6bec059952d9615298677ae3f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dcsvc.dll
    .dll windows:10 windows x64 arch:x64

    ab48872901d17893860da3dc05c92c7e


    Headers

    Imports

    Exports

    Sections

  • ddisplay.dll
    .dll windows:10 windows x64 arch:x64

    72c35402d53a0a897ac3328b84590793


    Headers

    Imports

    Exports

    Sections

  • ddraw.dll
    .dll windows:10 windows x64 arch:x64

    8d449268537ee00e027e8eb122a41b5e


    Headers

    Imports

    Exports

    Sections

  • ddrawex.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    d6041ff5624f4f94bb09e5421c0a2acd


    Headers

    Imports

    Exports

    Sections

  • declaredconfiguration.dll
    .dll windows:10 windows x64 arch:x64

    52bba0be3d5973d54f901841266b54c7


    Headers

    Imports

    Exports

    Sections

  • defragproxy.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    4ae77a4cc9d0e7cf01dedd77e1c306d6


    Headers

    Imports

    Exports

    Sections

  • defragres.dll
    .dll windows:10 windows x64 arch:x64


    Headers

    Sections

  • defragsvc.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    65006815ab2fbfa9987e2a460cd40251


    Headers

    Imports

    Exports

    Sections

  • delegatorprovider.dll
    .dll windows:10 windows x64 arch:x64

    08c6c7711ad321f094196bd628b651b5


    Headers

    Imports

    Exports

    Sections

  • deploymentcsps.dll
    .dll windows:10 windows x64 arch:x64

    439138f27f7f9e5e67f971e0833e15e8


    Headers

    Imports

    Exports

    Sections

  • deskadp.dll
    .dll windows:10 windows x64 arch:x64

    90658f80ecd1a1d9b408de8b06b47d09


    Headers

    Imports

    Exports

    Sections

  • deskmon.dll
    .dll windows:10 windows x64 arch:x64

    a83c8285dc3a8243f3d6e99376dfab4a


    Headers

    Imports

    Exports

    Sections

  • devenum.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    72615646d837f937de54d838b235c94d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • deviceaccess.dll
    .dll windows:10 windows x64 arch:x64

    dda4c95a270856e26575690e10e009d3


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • deviceassociation.dll
    .dll windows:10 windows x64 arch:x64

    eb5dc596311091d1bc1a040400c94a7c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • devicengccredprov.dll
    .dll windows:10 windows x64 arch:x64

    d7881698db6d36bb544b4925ea24d31f


    Headers

    Imports

    Exports

    Sections

  • deviceregistration.dll
    .dll windows:10 windows x64 arch:x64

    9e38b817d2ef7a3e63b2bb86ce0346be


    Headers

    Imports

    Exports

    Sections

  • devinv.dll
    .dll windows:10 windows x64 arch:x64

    1f60b65247bbaf42be536a758ad1d6e1


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • devmgr.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    d304b8b02b7fb857cc459eafc438b6b5


    Headers

    Imports

    Exports

    Sections

  • devobj.dll
    .dll windows:10 windows x64 arch:x64

    e82af252e147e4678095add12773d4f2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • devrtl.dll
    .dll windows:10 windows x64 arch:x64

    46148c5c0ecaac6d29fbbf4a27d98b70


    Headers

    Imports

    Exports

    Sections

  • dfdts.dll
    .dll windows:10 windows x64 arch:x64

    dcc14c4116d79ea2e8e1e8de83ad2a3a


    Headers

    Imports

    Exports

    Sections

  • dfscli.dll
    .dll windows:10 windows x64 arch:x64

    f470323508e5edc332486fee3b4c8b63


    Headers

    Imports

    Exports

    Sections

  • dfshim.dll
    .dll windows:10 windows x64 arch:x64

    8353b5238b56d26df4071e8ef09ce2e7


    Headers

    Imports

    Exports

    Sections

  • dhcpcmonitor.dll
    .dll windows:10 windows x64 arch:x64

    55b906ec4a3673cccf58f7251d4a60cc


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dhcpcore.dll
    .dll windows:10 windows x64 arch:x64

    4f812582733cfc81bd31632f32a695d4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dhcpcore6.dll
    .dll windows:10 windows x64 arch:x64

    2117c0cfdf400c83e232c8d9c0cafda8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dhcpcsvc.dll
    .dll windows:10 windows x64 arch:x64

    59aeb0b28d95273cf43440bcdbab3b56


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dhcpcsvc6.dll
    .dll windows:10 windows x64 arch:x64

    0775838615b1af2cf1edbda347527e07


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dhcpsapi.dll
    .dll windows:10 windows x64 arch:x64

    2d9e0c39f1df5f1869447124bf5275fb


    Headers

    Imports

    Exports

    Sections

  • diagnosticdataquery.dll
    .dll windows:10 windows x64 arch:x64

    d8e166e1f45dfa54d1aacec575a56efa


    Headers

    Imports

    Exports

    Sections

  • diagperf.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    ad0c09d1a6f7453f8149255204f6e01f


    Headers

    Imports

    Exports

    Sections

  • diagtrack.dll
    .dll windows:10 windows x64 arch:x64

    c6242f367583ed2ae465d3c675e0e552


    Headers

    Imports

    Exports

    Sections

  • dialclient.dll
    .dll windows:10 windows x64 arch:x64

    7815be31257e3611721ab4fcfea17b55


    Headers

    Imports

    Exports

    Sections

  • dialserver.dll
    .dll windows:10 windows x64 arch:x64

    cb9f84ca2abd71504c4a0f680b1963c3


    Headers

    Imports

    Exports

    Sections

  • difxapi.dll
    .dll windows:10 windows x64 arch:x64

    fa2989bf92693b1cfe9af99a75877110


    Headers

    Imports

    Exports

    Sections

  • dimsjob.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    ff51e8b207b96206fa95943b69c8d668


    Headers

    Imports

    Exports

    Sections

  • dimsroam.dll
    .dll windows:10 windows x64 arch:x64

    786dfb6d6101a0a3471fc97eff71a4b4


    Headers

    Imports

    Exports

    Sections

  • dinput.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    435a8e08665a650de33a1784cb88b8f4


    Headers

    Imports

    Exports

    Sections

  • dinput8.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    f1c0a5b0165d92e91a3033d69b0da2b9


    Headers

    Imports

    Exports

    Sections

  • directmanipulation.dll
    .dll windows:10 windows x64 arch:x64

    1f430d63eb9bcb2f2cf1caf1f1449176


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • directml.dll
    .dll windows:10 windows x64 arch:x64

    25b6b68db0172a95e9ac2d8e4875dd39


    Headers

    Imports

    Exports

    Sections

  • directxdatabasehelper.dll
    .dll windows:10 windows x64 arch:x64

    078a602f40a160e78cc0e7b9b7c45430


    Code Sign

    Headers

    Imports

    Sections

  • discan.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    eec6fe16241bc4ec1d6f12839716aacb


    Headers

    Imports

    Exports

    Sections

  • dispex.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    426aa82e7c49e00177359e846f56788b


    Headers

    Imports

    Exports

    Sections