SFVIP-Player-x64[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

SFVIP-Player-x64.zip
Size

40.7MB
MD5

7af36d81c5bdd0a268488253bed50761
SHA1

9920f4253b6a60ecfe934cf4a8b081adced61885
SHA256

b1a4de22fba5f1f307d5ec87bf4ab78b09c80887e4f77471bf8b7ec3bd6d2c79
SHA512

f099a6c594ab2e29b85ece808757bb89505db9415a2186298c6fbff30d3503a5755d436e6d7e473f56adf9b8fd7d39945807e1896547b4b8f62b1dedbb8d95d3
SSDEEP

786432:zTppWkPKjqf600fAkKOq7OIWObnun2+VS0Qo+RwORqNsohFQF7GCGc4:zdni+ihZq7FbsI0ERwzb7C/4

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SFVipPlayer/libmpv-2.dll
unpack001/SFVipPlayer/libmpv.dll
unpack001/SFVipPlayer/libthemes.dll

Files

SFVIP-Player-x64.zip
.zip
SFVipPlayer/SFVipPlayer.exe
.exe windows:5 windows x64 arch:x64

Code Sign

25:39:3d:fc:16:f0:8f:a2:46:6f:88:56:01:68:dc:8e
Certificate

Issuer

CN=serbianforum.org

Not Before

25/09/2024, 05:00

Not After

01/01/2099, 05:00

Subject

CN=serbianforum.org

3a:52:6a:2c:84:ce:55:e6:1d:65:fc:cc:12:d8:e9:89
Certificate

Issuer

CN=Sectigo Public Time Stamping CA R36,O=Sectigo Limited,C=GB

Not Before

15/01/2024, 00:00

Not After

14/04/2035, 23:59

Subject

CN=Sectigo Public Time Stamping Signer R35,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

7a:23:ae:da:53:69:96:0f:91:c8:3e:5c:f4:c7:e3:3f
Certificate

Issuer

CN=Sectigo Public Time Stamping Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Time Stamping CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

36:c2:b0:bd:7c:1b:3a:e7:a3:b3:dd:36:cb:c9:75:68
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

22/03/2021, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo Public Time Stamping Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Ot#
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Wo_
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dU&
Size: 629KB - Virtual size: 628KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 3.9MB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 716KB - Virtual size: 716KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SFVipPlayer/languages/Bulgarian.xaml
SFVipPlayer/languages/English.xaml
SFVipPlayer/languages/French.xaml
SFVipPlayer/languages/German.xaml
SFVipPlayer/languages/Greek.xaml
SFVipPlayer/languages/Italian.xaml
SFVipPlayer/languages/Poland.xaml
SFVipPlayer/languages/Russian.xaml
SFVipPlayer/languages/Serbian.xaml
SFVipPlayer/languages/Slovenian.xaml
SFVipPlayer/languages/Spanish.xaml
SFVipPlayer/languages/Turkish.xaml
SFVipPlayer/libmpv-2.dll
.dll windows:6 windows x64 arch:x64

da3faacd5f397935c62cbe3bc3f891a8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/__w/mpv-winbuild/mpv-winbuild/mpv-winbuild-cmake/build64/packages/mpv-prefix/src/mpv-build/libmpv-2.pdb

Imports

gdi32

BitBlt
ChoosePixelFormat
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateDIBSection
CreateFontIndirectW
CreateICW
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
DescribePixelFormat
EnumFontFamiliesExW
EnumFontFamiliesW
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetDeviceGammaRamp
GetICMProfileW
GetObjectA
GetPixelFormat
GetStockObject
GetTextExtentPoint32A
GetTextFaceW
GetTextMetricsW
SelectObject
SetDeviceGammaRamp
SetPixelFormat
SwapBuffers

advapi32

ConvertSidToStringSidA
ConvertStringSecurityDescriptorToSecurityDescriptorA
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
DeregisterEventSource
GetSidSubAuthority
GetSidSubAuthorityCount
GetTokenInformation
GetUserNameA
OpenProcessToken
RegCloseKey
RegEnumKeyExW
RegEnumValueA
RegEnumValueW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegisterEventSourceW
ReportEventW
SystemFunction036

ntdll

NtCreateFile
NtReadFile
NtWriteFile
RtlCaptureContext
RtlCaptureStackBackTrace
RtlLookupFunctionEntry
RtlNtStatusToDosError
RtlRestoreContext
RtlUnwindEx
RtlVirtualUnwind
VerSetConditionMask

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AddVectoredExceptionHandler
AreFileApisANSI
CancelIo
CancelIoEx
CloseHandle
CompareStringA
CompareStringOrdinal
ConnectNamedPipe
ConvertFiberToThread
ConvertThreadToFiberEx
CopyFileExW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFiberEx
CreateFileA
CreateFileMappingA
CreateFileMappingW
CreateFileW
CreateHardLinkW
CreateMutexA
CreateNamedPipeW
CreateProcessW
CreateSemaphoreA
CreateSemaphoreW
CreateSymbolicLinkW
CreateThread
CreateToolhelp32Snapshot
CreateWaitableTimerExW
DebugBreak
DeleteCriticalSection
DeleteFiber
DeleteFileW
DeleteProcThreadAttributeList
DeviceIoControl
DuplicateHandle
EnterCriticalSection
ExitProcess
FillConsoleOutputCharacterW
FindClose
FindFirstFileExA
FindFirstFileExW
FindFirstFileW
FindNextFileA
FindNextFileW
FindResourceW
FlsAlloc
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FormatMessageW
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesA
GetFileAttributesExA
GetFileAttributesW
GetFileInformationByHandle
GetFileInformationByHandleEx
GetFileSizeEx
GetFileTime
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameA
GetFullPathNameW
GetHandleInformation
GetLastError
GetLocaleInfoA
GetLogicalDrives
GetLongPathNameA
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetNumaHighestNodeNumber
GetNumaNodeProcessorMaskEx
GetNumberOfConsoleInputEvents
GetOEMCP
GetOverlappedResult
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetProcessId
GetStdHandle
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemPowerStatus
GetSystemPreferredUILanguages
GetSystemTime
GetSystemTimeAsFileTime
GetSystemTimePreciseAsFileTime
GetTempPathA
GetTempPathW
GetThreadContext
GetThreadGroupAffinity
GetThreadId
GetThreadPriority
GetTickCount
GetTimeZoneInformation
GetUserDefaultLocaleName
GetUserPreferredUILanguages
GetVersion
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAlloc
GlobalLock
GlobalMemoryStatusEx
GlobalUnlock
HeapAlloc
HeapFree
HeapReAlloc
InitOnceBeginInitialize
InitOnceComplete
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSRWLock
IsDebuggerPresent
IsValidCodePage
IsWow64Process
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LockResource
MapViewOfFile
Module32FirstW
Module32NextW
MoveFileExA
MoveFileExW
MulDiv
MultiByteToWideChar
OpenFileMappingA
OpenProcess
OpenThread
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleA
ReadConsoleInputW
ReadConsoleW
ReadFile
ReadFileEx
RegisterWaitForSingleObject
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
RemoveDirectoryW
ResetEvent
ResumeThread
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTextAttribute
SetConsoleTitleW
SetCurrentDirectoryW
SetDllDirectoryW
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFileInformationByHandle
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleInformation
SetLastError
SetNamedPipeHandleState
SetPriorityClass
SetProcessAffinityMask
SetThreadAffinityMask
SetThreadContext
SetThreadErrorMode
SetThreadExecutionState
SetThreadGroupAffinity
SetThreadPriority
SetThreadStackGuarantee
SetWaitableTimer
SignalObjectAndWait
SizeofResource
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SleepEx
SuspendThread
SwitchToFiber
SwitchToThread
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
TryEnterCriticalSection
UnmapViewOfFile
UnregisterWait
UpdateProcThreadAttribute
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteFileEx
__C_specific_handler
lstrcmpiW
lstrcpyA
lstrcpynA

ole32

CLSIDFromString
CoCreateInstance
CoGetMalloc
CoInitialize
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CreateBindCtx
OleInitialize
OleLoadFromStream
OleSaveToStream
OleUninitialize
PropVariantClear
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StringFromCLSID
StringFromGUID2

user32

AdjustWindowRect
AdjustWindowRectEx
AttachThreadInput
BeginPaint
CallNextHookEx
CallWindowProcW
ChangeDisplaySettingsExW
ClientToScreen
ClipCursor
CloseClipboard
CopyIcon
CopyImage
CreateIconFromResource
CreateIconIndirect
CreateWindowExA
CreateWindowExW
DefWindowProcA
DefWindowProcW
DestroyCursor
DestroyIcon
DestroyWindow
DialogBoxIndirectParamW
DispatchMessageA
DispatchMessageW
DisplayConfigGetDeviceInfo
DrawIcon
DrawTextW
EmptyClipboard
EnableWindow
EndDialog
EndPaint
EnumDisplayDevicesW
EnumDisplayMonitors
EnumDisplaySettingsW
EqualRect
FillRect
FindWindowExW
FindWindowW
FlashWindowEx
FrameRect
GetAsyncKeyState
GetClassInfoExW
GetClientRect
GetClipCursor
GetClipboardData
GetClipboardSequenceNumber
GetCursorInfo
GetCursorPos
GetDC
GetDesktopWindow
GetDisplayConfigBufferSizes
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetKeyboardLayout
GetKeyboardState
GetMenu
GetMessageExtraInfo
GetMessageW
GetMonitorInfoW
GetParent
GetProcessWindowStation
GetPropW
GetRawInputData
GetRawInputDeviceInfoA
GetRawInputDeviceList
GetShellWindow
GetSystemMetrics
GetUpdateRect
GetUserObjectInformationW
GetWindowLongPtrA
GetWindowLongPtrW
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InflateRect
IntersectRect
InvalidateRect
IsClipboardFormatAvailable
IsIconic
IsWindowVisible
IsZoomed
KillTimer
LoadCursorA
LoadCursorW
LoadIconW
MapVirtualKeyW
MapWindowPoints
MessageBoxA
MessageBoxW
MonitorFromPoint
MonitorFromRect
MonitorFromWindow
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
QueryDisplayConfig
RegisterClassExA
RegisterClassExW
RegisterClassW
RegisterClipboardFormatW
RegisterDeviceNotificationW
RegisterRawInputDevices
RegisterWindowMessageA
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemovePropW
ScreenToClient
SendMessageA
SendMessageW
SendNotifyMessageW
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetLayeredWindowAttributes
SetPropW
SetRect
SetTimer
SetWinEventHook
SetWindowDisplayAffinity
SetWindowLongPtrA
SetWindowLongPtrW
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
ToUnicode
TrackMouseEvent
TranslateMessage
UnhookWinEvent
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
UnregisterDeviceNotification
ValidateRect
wsprintfA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueA
VerQueryValueW

shell32

DragAcceptFiles
DragFinish
DragQueryFileW
ExtractIconExW
SHGetFolderPathA
SHGetFolderPathW
SHGetKnownFolderPath
SHGetSpecialFolderPathA
SHGetSpecialFolderPathW
ShellExecuteW

avrt

AvRevertMmThreadCharacteristics
AvSetMmThreadCharacteristicsW

dwmapi

DwmEnableMMCSS
DwmFlush
DwmGetCompositionTimingInfo
DwmGetWindowAttribute
DwmIsCompositionEnabled
DwmSetWindowAttribute

uxtheme

SetWindowTheme

winmm

timeBeginPeriod
timeEndPeriod
waveInAddBuffer
waveInClose
waveInGetDevCapsW
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInStop
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsW
waveOutGetErrorTextW
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

opengl32

wglCreateContext
wglDeleteContext
wglGetProcAddress
wglMakeCurrent

api-ms-win-crt-convert-l1-1-0

_i64toa
_itoa
_itoa_s
_ltoa
_strtod_l
_strtoi64_l
_strtoui64_l
_ui64toa
_ultoa
atof
atoi
mbrtowc
mbsrtowcs
strtod
strtof
strtol
strtoll
strtoul
strtoull
strtoumax
wcrtomb
wcrtomb_s
wcstol
wcstombs
wcstombs_s
wcstoul

api-ms-win-crt-environment-l1-1-0

__p__environ
__p__wenviron
_putenv
_wgetcwd
_wgetenv
getenv

api-ms-win-crt-filesystem-l1-1-0

_access
_chmod
_findclose
_findfirst64
_findnext64
_fstat64
_lock_file
_mkdir
_rmdir
_stat64
_unlink
_unlock_file
_waccess
_wfindfirst64
_wfindnext64
_wfullpath
_wmkdir
_wremove
_wrename
_wrmdir
_wstat64
_wunlink
remove
rename

api-ms-win-crt-heap-l1-1-0

_aligned_free
_aligned_malloc
_aligned_realloc
_set_new_mode
calloc
free
malloc
realloc

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func
___mb_cur_max_func
__pctype_func
_configthreadlocale
_create_locale
_free_locale
localeconv
setlocale

api-ms-win-crt-private-l1-1-0

__DestructExceptionObject
__intrinsic_setjmpex
longjmp
memchr
memcmp
memcpy
memmove
strchr
strrchr
strstr
wcschr
wcsrchr
wcsstr

api-ms-win-crt-runtime-l1-1-0

__p___argc
__p___argv
__p___wargv
__sys_nerr
_assert
_beginthreadex
_configure_narrow_argv
_configure_wide_argv
_crt_at_quick_exit
_crt_atexit
_endthreadex
_errno
_execute_onexit_table
_exit
_initialize_narrow_environment
_initialize_onexit_table
_initialize_wide_environment
_initterm
_register_onexit_function
_register_thread_local_exe_atexit_callback
_wassert
abort
exit
perror
raise
signal
strerror
strerror_s
system

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__p__fmode
__stdio_common_vfprintf
__stdio_common_vfscanf
__stdio_common_vfwprintf
__stdio_common_vsnprintf_s
__stdio_common_vsprintf
__stdio_common_vsprintf_s
__stdio_common_vsscanf
__stdio_common_vswprintf
_close
_dup
_fileno
_fseeki64
_ftelli64
_get_osfhandle
_isatty
_lseeki64
_open
_open_osfhandle
_pclose
_popen
_read
_setmode
_sopen
_wfopen
_wfopen_s
_wopen
_write
_wsopen
clearerr
fclose
feof
ferror
fflush
fgetc
fgets
fgetwc
fopen
fopen_s
fputc
fputs
fputwc
fread
fseek
ftell
fwrite
getc
putchar
puts
rewind
setvbuf
tmpfile
tmpnam
ungetc
ungetwc

api-ms-win-crt-string-l1-1-0

_isctype
_isctype_l
_iswlower_l
_strdup
_stricmp
_strlwr
_strnicmp
_strrev
_strupr
_wcsdup
_wcsicmp
_wcsnicmp
isalnum
isalpha
iscntrl
isgraph
islower
isprint
ispunct
isspace
isupper
iswctype
isxdigit
mbrlen
memset
strcat
strcmp
strcoll
strcpy
strcspn
strlen
strncat
strncat_s
strncmp
strncpy
strncpy_s
strpbrk
strspn
strtok
strtok_s
tolower
toupper
wcscat
wcscmp
wcscoll
wcscpy
wcscpy_s
wcslen
wcsncmp
wcsncpy_s

api-ms-win-crt-time-l1-1-0

__daylight
__timezone
__tzname
_difftime64
_ftime64
_gmtime64
_gmtime64_s
_localtime64
_localtime64_s
_mkgmtime64
_mktime64
_strftime_l
_time64
_tzset
_utime64
clock
strftime

api-ms-win-crt-utility-l1-1-0

bsearch
div
qsort
rand
rand_s
srand

api-ms-win-crt-math-l1-1-0

_fdopen
_hypot
_j1
acos
acosf
asin
asinf
asinhf
atan
atan2
atan2f
atanf
cbrt
cbrtf
ceil
ceilf
cos
cosf
cosh
erf
erff
exp
exp2
exp2f
expf
expm1
fabs
floor
floorf
fma
fmaf
fmod
fmodf
frexp
hypot
log
log10
log10f
log1p
log1pf
log2
log2f
logf
lrint
lrintf
lround
lroundf
modf
modff
nextafter
pow
powf
remainder
rint
rintf
round
roundf
sin
sinf
sinh
sinhf
sqrt
sqrtf
tan
tanf
tanh
tanhf
trunc
truncf

shlwapi

PathRemoveFileSpecW
SHCreateStreamOnFileA

ws2_32

WSACleanup
WSACloseEvent
WSACreateEvent
WSADuplicateSocketW
WSAGetLastError
WSAGetOverlappedResult
WSARecv
WSARecvFrom
WSAResetEvent
WSASend
WSASendTo
WSASetLastError
WSASocketW
WSAStartup
WSAStringToAddressA
WSAWaitForMultipleEvents
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyaddr
gethostbyname
gethostname
getnameinfo
getpeername
getservbyname
getservbyport
getsockname
getsockopt
htonl
htons
inet_addr
inet_ntoa
ioctlsocket
listen
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

oleaut32

OleCreatePropertyFrame
SysFreeString

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA

bcrypt

BCryptCloseAlgorithmProvider
BCryptGenRandom
BCryptOpenAlgorithmProvider

api-ms-win-crt-multibyte-l1-1-0

_mbsrchr
_mbtowc_l

userenv

GetUserProfileDirectoryW

cfgmgr32

CM_Get_Child
CM_Get_DevNode_Registry_PropertyW
CM_Get_DevNode_Status
CM_Get_Device_IDA
CM_Get_Device_IDW
CM_Get_Device_ID_ListW
CM_Get_Device_ID_List_SizeW
CM_Get_Parent
CM_Get_Sibling
CM_Locate_DevNodeA
CM_Locate_DevNodeW
CM_Open_DevNode_Key

imm32

ImmAssociateContext
ImmGetCandidateListW
ImmGetCompositionStringW
ImmGetContext
ImmGetIMEFileNameA
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionStringW
ImmSetCompositionWindow

iphlpapi

if_nametoindex

dwrite

DWriteCreateFactory

d2d1

D2D1CreateFactory

crypt32

CertCloseStore
CertFindCertificateInStore
CertFreeCertificateContext
CertOpenSystemStoreW

Exports

Exports

FT_Activate_Size
FT_Add_Default_Modules
FT_Add_Module
FT_Angle_Diff
FT_Atan2
FT_Attach_File
FT_Attach_Stream
FT_Bitmap_Blend
FT_Bitmap_Convert
FT_Bitmap_Copy
FT_Bitmap_Done
FT_Bitmap_Embolden
FT_Bitmap_Init
FT_Bitmap_New
FT_CeilFix
FT_Cos
FT_DivFix
FT_Done_Face
FT_Done_FreeType
FT_Done_Glyph
FT_Done_Library
FT_Done_MM_Var
FT_Done_Size
FT_Error_String
FT_Face_GetCharVariantIndex
FT_Face_GetCharVariantIsDefault
FT_Face_GetCharsOfVariant
FT_Face_GetVariantSelectors
FT_Face_GetVariantsOfChar
FT_Face_Properties
FT_FloorFix
FT_Get_Advance
FT_Get_Advances
FT_Get_BDF_Charset_ID
FT_Get_BDF_Property
FT_Get_CMap_Format
FT_Get_CMap_Language_ID
FT_Get_Char_Index
FT_Get_Charmap_Index
FT_Get_Color_Glyph_ClipBox
FT_Get_Color_Glyph_Layer
FT_Get_Color_Glyph_Paint
FT_Get_Colorline_Stops
FT_Get_Default_Named_Instance
FT_Get_First_Char
FT_Get_Font_Format
FT_Get_Glyph
FT_Get_Glyph_Name
FT_Get_Kerning
FT_Get_MM_Blend_Coordinates
FT_Get_MM_Var
FT_Get_MM_WeightVector
FT_Get_Module
FT_Get_Multi_Master
FT_Get_Name_Index
FT_Get_Next_Char
FT_Get_PS_Font_Info
FT_Get_PS_Font_Private
FT_Get_PS_Font_Value
FT_Get_Paint
FT_Get_Paint_Layers
FT_Get_Postscript_Name
FT_Get_Renderer
FT_Get_Sfnt_LangTag
FT_Get_Sfnt_Name
FT_Get_Sfnt_Name_Count
FT_Get_Sfnt_Table
FT_Get_SubGlyph_Info
FT_Get_Track_Kerning
FT_Get_Transform
FT_Get_TrueType_Engine_Type
FT_Get_Var_Axis_Flags
FT_Get_Var_Blend_Coordinates
FT_Get_Var_Design_Coordinates
FT_Get_X11_Font_Format
FT_GlyphSlot_AdjustWeight
FT_GlyphSlot_Embolden
FT_GlyphSlot_Oblique
FT_GlyphSlot_Own_Bitmap
FT_GlyphSlot_Slant
FT_Glyph_Copy
FT_Glyph_Get_CBox
FT_Glyph_Stroke
FT_Glyph_StrokeBorder
FT_Glyph_To_Bitmap
FT_Glyph_Transform
FT_Gzip_Uncompress
FT_Has_PS_Glyph_Names
FT_Init_FreeType
FT_Library_SetLcdFilter
FT_Library_SetLcdFilterWeights
FT_Library_SetLcdGeometry
FT_Library_Version
FT_List_Add
FT_List_Finalize
FT_List_Find
FT_List_Insert
FT_List_Iterate
FT_List_Remove
FT_List_Up
FT_Load_Char
FT_Load_Glyph
FT_Load_Sfnt_Table
FT_Matrix_Invert
FT_Matrix_Multiply
FT_MulDiv
FT_MulFix
FT_New_Face
FT_New_Glyph
FT_New_Library
FT_New_Memory_Face
FT_New_Size
FT_Open_Face
FT_Outline_Check
FT_Outline_Copy
FT_Outline_Decompose
FT_Outline_Done
FT_Outline_Embolden
FT_Outline_EmboldenXY
FT_Outline_GetInsideBorder
FT_Outline_GetOutsideBorder
FT_Outline_Get_Bitmap
FT_Outline_Get_CBox
FT_Outline_Get_Orientation
FT_Outline_New
FT_Outline_Render
FT_Outline_Reverse
FT_Outline_Transform
FT_Outline_Translate
FT_Palette_Data_Get
FT_Palette_Select
FT_Palette_Set_Foreground_Color
FT_Property_Get
FT_Property_Set
FT_Reference_Face
FT_Reference_Library
FT_Remove_Module
FT_Render_Glyph
FT_Request_Size
FT_RoundFix
FT_Select_Charmap
FT_Select_Size
FT_Set_Char_Size
FT_Set_Charmap
FT_Set_Debug_Hook
FT_Set_Default_Log_Handler
FT_Set_Default_Properties
FT_Set_Log_Handler
FT_Set_MM_Blend_Coordinates
FT_Set_MM_Design_Coordinates
FT_Set_MM_WeightVector
FT_Set_Named_Instance
FT_Set_Pixel_Sizes
FT_Set_Renderer
FT_Set_Transform
FT_Set_Var_Blend_Coordinates
FT_Set_Var_Design_Coordinates
FT_Sfnt_Table_Info
FT_Sin
FT_Stream_OpenBzip2
FT_Stream_OpenGzip
FT_Stream_OpenLZW
FT_Stroker_BeginSubPath
FT_Stroker_ConicTo
FT_Stroker_CubicTo
FT_Stroker_Done
FT_Stroker_EndSubPath
FT_Stroker_Export
FT_Stroker_ExportBorder
FT_Stroker_GetBorderCounts
FT_Stroker_GetCounts
FT_Stroker_LineTo
FT_Stroker_New
FT_Stroker_ParseOutline
FT_Stroker_Rewind
FT_Stroker_Set
FT_Tan
FT_Trace_Set_Default_Level
FT_Trace_Set_Level
FT_Vector_From_Polar
FT_Vector_Length
FT_Vector_Polarize
FT_Vector_Rotate
FT_Vector_Transform
FT_Vector_Unit
Java_java_awt_BDFontMetrics_charWidthN
Java_java_awt_BDFontMetrics_charsWidthN
Java_java_awt_BDFontMetrics_destroyFontN
Java_java_awt_BDFontMetrics_destroyN
Java_java_awt_BDFontMetrics_getFontFamilyAndStyleN
Java_java_awt_BDFontMetrics_initN
Java_java_awt_BDFontMetrics_loadFontN
Java_java_awt_BDFontMetrics_resolveFontN
Java_java_awt_BDFontMetrics_stringWidthN
Java_java_awt_BDFontMetrics_unloadFontConfigN
Java_java_awt_BDGraphics_drawStringN
Java_org_videolan_Libbluray_cacheBdRomFileN
Java_org_videolan_Libbluray_getAacsDataN
Java_org_videolan_Libbluray_getBdjoN
Java_org_videolan_Libbluray_getPlaylistInfoN
Java_org_videolan_Libbluray_getTitleInfosN
Java_org_videolan_Libbluray_getUOMaskN
Java_org_videolan_Libbluray_listBdFilesN
Java_org_videolan_Libbluray_readRegN
Java_org_videolan_Libbluray_seekN
Java_org_videolan_Libbluray_selectAngleN
Java_org_videolan_Libbluray_selectPlaylistN
Java_org_videolan_Libbluray_selectRateN
Java_org_videolan_Libbluray_selectTitleN
Java_org_videolan_Libbluray_setKeyInterestN
Java_org_videolan_Libbluray_setUOMaskN
Java_org_videolan_Libbluray_setVirtualPackageN
Java_org_videolan_Libbluray_soundEffectN
Java_org_videolan_Libbluray_tellTimeN
Java_org_videolan_Libbluray_updateGraphicN
Java_org_videolan_Libbluray_writeRegN
Java_org_videolan_Logger_logN
JxlColorEncodingSetToLinearSRGB
JxlColorEncodingSetToSRGB
JxlDecoderCloseInput
JxlDecoderCreate
JxlDecoderDestroy
JxlDecoderExtraChannelBufferSize
JxlDecoderFlushImage
JxlDecoderGetBasicInfo
JxlDecoderGetBoxSizeRaw
JxlDecoderGetBoxType
JxlDecoderGetColorAsEncodedProfile
JxlDecoderGetColorAsICCProfile
JxlDecoderGetExtraChannelBlendInfo
JxlDecoderGetExtraChannelInfo
JxlDecoderGetExtraChannelName
JxlDecoderGetFrameHeader
JxlDecoderGetFrameName
JxlDecoderGetICCProfileSize
JxlDecoderGetIntendedDownsamplingRatio
JxlDecoderImageOutBufferSize
JxlDecoderPreviewOutBufferSize
JxlDecoderProcessInput
JxlDecoderReleaseBoxBuffer
JxlDecoderReleaseInput
JxlDecoderReleaseJPEGBuffer
JxlDecoderReset
JxlDecoderRewind
JxlDecoderSetBoxBuffer
JxlDecoderSetCms
JxlDecoderSetCoalescing
JxlDecoderSetDecompressBoxes
JxlDecoderSetDesiredIntensityTarget
JxlDecoderSetExtraChannelBuffer
JxlDecoderSetImageOutBitDepth
JxlDecoderSetImageOutBuffer
JxlDecoderSetImageOutCallback
JxlDecoderSetInput
JxlDecoderSetJPEGBuffer
JxlDecoderSetKeepOrientation
JxlDecoderSetMultithreadedImageOutCallback
JxlDecoderSetOutputColorProfile
JxlDecoderSetParallelRunner
JxlDecoderSetPreferredColorProfile
JxlDecoderSetPreviewOutBuffer
JxlDecoderSetProgressiveDetail
JxlDecoderSetRenderSpotcolors
JxlDecoderSetUnpremultiplyAlpha
JxlDecoderSizeHintBasicInfo
JxlDecoderSkipCurrentFrame
JxlDecoderSkipFrames
JxlDecoderSubscribeEvents
JxlDecoderVersion
JxlEncoderAddBox
JxlEncoderAddChunkedFrame
JxlEncoderAddImageFrame
JxlEncoderAddJPEGFrame
JxlEncoderAllowExpertOptions
JxlEncoderCloseBoxes
JxlEncoderCloseFrames
JxlEncoderCloseInput
JxlEncoderCollectStats
JxlEncoderCreate
JxlEncoderDestroy
JxlEncoderDistanceFromQuality
JxlEncoderFlushInput
JxlEncoderFrameSettingsCreate
JxlEncoderFrameSettingsSetFloatOption
JxlEncoderFrameSettingsSetOption
JxlEncoderGetError
JxlEncoderGetRequiredCodestreamLevel
JxlEncoderInitBasicInfo
JxlEncoderInitBlendInfo
JxlEncoderInitExtraChannelInfo
JxlEncoderInitFrameHeader
JxlEncoderProcessOutput
JxlEncoderReset
JxlEncoderSetBasicInfo
JxlEncoderSetCms
JxlEncoderSetCodestreamLevel
JxlEncoderSetColorEncoding
JxlEncoderSetDebugImageCallback
JxlEncoderSetExtraChannelBlendInfo
JxlEncoderSetExtraChannelBuffer
JxlEncoderSetExtraChannelDistance
JxlEncoderSetExtraChannelInfo
JxlEncoderSetExtraChannelName
JxlEncoderSetFrameBitDepth
JxlEncoderSetFrameDistance
JxlEncoderSetFrameHeader
JxlEncoderSetFrameLossless
JxlEncoderSetFrameName
JxlEncoderSetICCProfile
JxlEncoderSetOutputProcessor
JxlEncoderSetParallelRunner
JxlEncoderSetUpsamplingMode
JxlEncoderStatsCreate
JxlEncoderStatsDestroy
JxlEncoderStatsGet
JxlEncoderStatsMerge
JxlEncoderStoreJPEGMetadata
JxlEncoderUseBoxes
JxlEncoderUseContainer
JxlEncoderVersion
JxlSignatureCheck
TT_New_Context
TT_RunIns
memcpy_layout
mpv_abort_async_command
mpv_client_api_version
mpv_client_id
mpv_client_name
mpv_command
mpv_command_async
mpv_command_node
mpv_command_node_async
mpv_command_ret
mpv_command_string
mpv_create
mpv_create_client
mpv_create_weak_client
mpv_del_property
mpv_destroy
mpv_error_string
mpv_event_name
mpv_event_to_node
mpv_free
mpv_free_node_contents
mpv_get_property
mpv_get_property_async
mpv_get_property_osd_string
mpv_get_property_string
mpv_get_time_ns
mpv_get_time_us
mpv_get_wakeup_pipe
mpv_hook_add
mpv_hook_continue
mpv_initialize
mpv_load_config_file
mpv_observe_property
mpv_render_context_create
mpv_render_context_free
mpv_render_context_get_info
mpv_render_context_render
mpv_render_context_report_swap
mpv_render_context_set_parameter
mpv_render_context_set_update_callback
mpv_render_context_update
mpv_request_event
mpv_request_log_messages
mpv_set_option
mpv_set_option_string
mpv_set_property
mpv_set_property_async
mpv_set_property_string
mpv_set_wakeup_callback
mpv_stream_cb_add_ro
mpv_terminate_destroy
mpv_unobserve_property
mpv_wait_async_requests
mpv_wait_event
mpv_wakeup
opus_decode
opus_decode_float
opus_decoder_create
opus_decoder_ctl
opus_decoder_destroy
opus_decoder_get_nb_samples
opus_decoder_get_size
opus_decoder_init
opus_encode
opus_encode_float
opus_encoder_create
opus_encoder_ctl
opus_encoder_destroy
opus_encoder_get_size
opus_encoder_init
opus_get_version_string
opus_multistream_decode
opus_multistream_decode_float
opus_multistream_decoder_create
opus_multistream_decoder_ctl
opus_multistream_decoder_destroy
opus_multistream_decoder_get_size
opus_multistream_decoder_init
opus_multistream_encode
opus_multistream_encode_float
opus_multistream_encoder_create
opus_multistream_encoder_ctl
opus_multistream_encoder_destroy
opus_multistream_encoder_get_size
opus_multistream_encoder_init
opus_multistream_packet_pad
opus_multistream_packet_unpad
opus_multistream_surround_encoder_create
opus_multistream_surround_encoder_get_size
opus_multistream_surround_encoder_init
opus_packet_get_bandwidth
opus_packet_get_nb_channels
opus_packet_get_nb_frames
opus_packet_get_nb_samples
opus_packet_get_samples_per_frame
opus_packet_pad
opus_packet_parse
opus_packet_unpad
opus_pcm_soft_clip
opus_repacketizer_cat
opus_repacketizer_create
opus_repacketizer_destroy
opus_repacketizer_get_nb_frames
opus_repacketizer_get_size
opus_repacketizer_init
opus_repacketizer_out
opus_repacketizer_out_range
opus_strerror
pl_alpha_overlay
pl_bit_encoding_equal
pl_buf_copy
pl_buf_create
pl_buf_destroy
pl_buf_export
pl_buf_poll
pl_buf_read
pl_buf_recreate
pl_buf_write
pl_cache_create
pl_cache_default_params
pl_cache_destroy
pl_cache_get
pl_cache_iterate
pl_cache_load
pl_cache_load_ex
pl_cache_objects
pl_cache_reset
pl_cache_save
pl_cache_save_ex
pl_cache_set
pl_cache_signature
pl_cache_size
pl_cache_try_set
pl_chroma_location_offset
pl_color_adjustment_neutral
pl_color_levels_guess
pl_color_map_default_params
pl_color_map_high_quality_params
pl_color_primaries_guess
pl_color_primaries_is_wide_gamut
pl_color_repr_decode
pl_color_repr_equal
pl_color_repr_hdtv
pl_color_repr_jpeg
pl_color_repr_merge
pl_color_repr_normalize
pl_color_repr_rgb
pl_color_repr_sdtv
pl_color_repr_uhdtv
pl_color_repr_unknown
pl_color_space_bt2020_hlg
pl_color_space_bt709
pl_color_space_equal
pl_color_space_hdr10
pl_color_space_infer
pl_color_space_infer_map
pl_color_space_infer_ref
pl_color_space_is_black_scaled
pl_color_space_is_hdr
pl_color_space_merge
pl_color_space_monitor
pl_color_space_nominal_luma_ex
pl_color_space_srgb
pl_color_space_unknown
pl_color_system_guess_ycbcr
pl_color_system_is_linear
pl_color_system_is_ycbcr_like
pl_color_transfer_nominal_peak
pl_d3d11_create
pl_d3d11_create_swapchain
pl_d3d11_default_params
pl_d3d11_destroy
pl_d3d11_get
pl_d3d11_swapchain_unwrap
pl_d3d11_wrap
pl_deband_default_params
pl_deinterlace_default_params

Sections

.text
Size: 77.5MB - Virtual size: 77.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18.2MB - Virtual size: 18.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 157B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 24.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 814KB - Virtual size: 814KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SFVipPlayer/libmpv.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Admin\source\repos\SFVipPlayer\libmpv\obj\Release\libmpv.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 573KB - Virtual size: 572KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SFVipPlayer/libthemes.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Admin\source\repos\SFVipPlayer\libthemes\obj\Release\libthemes.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 475KB - Virtual size: 475KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Code Sign

25:39:3d:fc:16:f0:8f:a2:46:6f:88:56:01:68:dc:8eCertificate

3a:52:6a:2c:84:ce:55:e6:1d:65:fc:cc:12:d8:e9:89Certificate

Extended Key Usages

Key Usages

7a:23:ae:da:53:69:96:0f:91:c8:3e:5c:f4:c7:e3:3fCertificate

Extended Key Usages

Key Usages

36:c2:b0:bd:7c:1b:3a:e7:a3:b3:dd:36:cb:c9:75:68Certificate

Extended Key Usages

Key Usages

Signer

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: - Virtual size: 141KB

.data Size: - Virtual size: 4KB

.rdata Size: - Virtual size: 14KB

.pdata Size: - Virtual size: 15KB

.xdata Size: - Virtual size: 11KB

.bss Size: - Virtual size: 3KB

.idata Size: - Virtual size: 4KB

.CRT Size: - Virtual size: 104B

.tls Size: - Virtual size: 16B

.Ot# Size: - Virtual size: 148KB

.Wo_ Size: 512B - Virtual size: 120B

.dU& Size: 629KB - Virtual size: 628KB

.rsrc Size: 77KB - Virtual size: 77KB

.reloc Size: 512B - Virtual size: 48B

.enigma1 Size: 3.9MB - Virtual size: 4KB

.enigma2 Size: 716KB - Virtual size: 716KB

da3faacd5f397935c62cbe3bc3f891a8

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

gdi32

advapi32

ntdll

kernel32

ole32

user32

version

shell32

avrt

dwmapi

uxtheme

winmm

opengl32

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-private-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-math-l1-1-0

shlwapi

ws2_32

oleaut32

avicap32

setupapi

bcrypt

api-ms-win-crt-multibyte-l1-1-0

userenv

cfgmgr32

imm32

iphlpapi

dwrite

25:39:3d:fc:16:f0:8f:a2:46:6f:88:56:01:68:dc:8e
Certificate

3a:52:6a:2c:84:ce:55:e6:1d:65:fc:cc:12:d8:e9:89
Certificate

7a:23:ae:da:53:69:96:0f:91:c8:3e:5c:f4:c7:e3:3f
Certificate

36:c2:b0:bd:7c:1b:3a:e7:a3:b3:dd:36:cb:c9:75:68
Certificate

.text
Size: - Virtual size: 141KB

.data
Size: - Virtual size: 4KB

.rdata
Size: - Virtual size: 14KB

.pdata
Size: - Virtual size: 15KB

.xdata
Size: - Virtual size: 11KB

.bss
Size: - Virtual size: 3KB

.idata
Size: - Virtual size: 4KB

.CRT
Size: - Virtual size: 104B

.tls
Size: - Virtual size: 16B

.Ot#
Size: - Virtual size: 148KB

.Wo_
Size: 512B - Virtual size: 120B

.dU&
Size: 629KB - Virtual size: 628KB

.rsrc
Size: 77KB - Virtual size: 77KB

.reloc
Size: 512B - Virtual size: 48B

.enigma1
Size: 3.9MB - Virtual size: 4KB

.enigma2
Size: 716KB - Virtual size: 716KB

.text
Size: 77.5MB - Virtual size: 77.5MB

.rdata
Size: 18.2MB - Virtual size: 18.2MB

.buildid
Size: 512B - Virtual size: 157B

.data
Size: 267KB - Virtual size: 24.6MB

.pdata
Size: 814KB - Virtual size: 814KB

.00cfg
Size: 512B - Virtual size: 16B

.rodata
Size: 14KB - Virtual size: 14KB

.rodata
Size: 6KB - Virtual size: 6KB

.tls
Size: 512B - Virtual size: 352B

.rsrc
Size: 267KB - Virtual size: 267KB

.reloc
Size: 294KB - Virtual size: 293KB

.text
Size: 573KB - Virtual size: 572KB

.rsrc
Size: 1024B - Virtual size: 872B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 475KB - Virtual size: 475KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 512B - Virtual size: 12B