2.8
中危
1 个模型检测该样本为恶意!
重新分析
更多

0711090cd64453d94c9efd4beeff17ccd86ed16879e611a8df88ff4375ff208f

8b097f75f45dcd24afe71366f3548271.exe

分析耗时

111s

最近分析

文件大小

2.2MB
静态报毒 动态报毒 FREEMAKE
鹰眼引擎
未检测 暂无鹰眼引擎检测结果
静态判定
反病毒引擎
查杀引擎 查杀结果 查杀时间 查杀版本
McAfee 20210108 6.0.6.653
Alibaba 20190527 0.3.0.5
Baidu 20190318 1.0.0.2
Avast 20210109 21.1.5827.0
Tencent 20210109 1.0.0.1
Kingsoft 20210109 2017.9.26.565
CrowdStrike 20190702 1.0
静态指标
This executable is signed
This executable has a PDB path (1 个事件)
pdb_path C:\BuildAgent\work\f528c7da27d4599a\Sources\FMStarter\bin\Release\FreemakeVideoConverter.pdb
行为判定
可视化分析
二进制图像
暂无二进制图像 该样本未生成二进制可视化图像
运行截图
暂无运行截图 该样本运行过程中未生成截图

👋 欢迎使用 ChatHawk

我是您的恶意软件分析助手,可以帮您分析和解读恶意软件报告。请随时向我提问!

🔍 主要威胁分析
⚡ 行为特征
🛡️ 防护建议
🔧 技术手段
🎯 检测方法
🤖

PE Compile Time

2020-08-26 13:55:09

Imports

Library VERSION.dll:
0x51c838 VerQueryValueW
0x51c83c GetFileVersionInfoW
Library KERNEL32.dll:
0x51c1d4 GetConsoleMode
0x51c1d8 WriteConsoleW
0x51c1e0 MultiByteToWideChar
0x51c1e4 GetModuleHandleW
0x51c1e8 GetProcAddress
0x51c1ec CreateSemaphoreW
0x51c1f0 GetCommandLineW
0x51c1f4 CreateProcessW
0x51c1f8 WaitForSingleObject
0x51c1fc Sleep
0x51c200 CloseHandle
0x51c204 GetLastError
0x51c208 FindResourceW
0x51c20c LoadResource
0x51c210 SizeofResource
0x51c214 LockResource
0x51c218 lstrlenW
0x51c21c lstrcmpW
0x51c220 FreeLibrary
0x51c224 SetLastError
0x51c228 DeactivateActCtx
0x51c22c ActivateActCtx
0x51c230 LoadLibraryW
0x51c244 CompareStringW
0x51c248 GetVersionExW
0x51c24c GlobalDeleteAtom
0x51c250 GetConsoleCP
0x51c254 GlobalAddAtomW
0x51c258 GetCurrentThreadId
0x51c25c FreeResource
0x51c260 MulDiv
0x51c264 GlobalUnlock
0x51c268 GlobalLock
0x51c26c GetModuleFileNameW
0x51c270 GetCurrentProcessId
0x51c274 LocalFree
0x51c278 FormatMessageW
0x51c280 IsValidCodePage
0x51c284 GetOEMCP
0x51c288 GetACP
0x51c28c GetCPInfo
0x51c290 IsDebuggerPresent
0x51c298 TerminateProcess
0x51c2a0 HeapCreate
0x51c2a4 SetHandleCount
0x51c2b0 GetStdHandle
0x51c2b8 GetFileType
0x51c2bc SetStdHandle
0x51c2c0 HeapSize
0x51c2c8 CreateThread
0x51c2cc ExitThread
0x51c2d0 VirtualQuery
0x51c2d4 GetSystemInfo
0x51c2d8 VirtualAlloc
0x51c2dc GlobalAlloc
0x51c2e0 LCMapStringW
0x51c2e8 GlobalFindAtomW
0x51c2ec GetStringTypeW
0x51c2f0 ExitProcess
0x51c2f4 HeapReAlloc
0x51c2f8 GlobalSize
0x51c2fc CopyFileW
0x51c300 GlobalFree
0x51c304 RaiseException
0x51c308 RtlUnwind
0x51c30c HeapFree
0x51c310 HeapAlloc
0x51c318 DecodePointer
0x51c31c EncodePointer
0x51c320 GetStartupInfoW
0x51c324 HeapSetInformation
0x51c328 FindResourceExW
0x51c32c VirtualProtect
0x51c330 SearchPathW
0x51c334 GetProfileIntW
0x51c338 GetTickCount
0x51c33c SetErrorMode
0x51c340 GetNumberFormatW
0x51c348 GetTempPathW
0x51c34c GetTempFileNameW
0x51c350 GetFileTime
0x51c354 GetFileSizeEx
0x51c358 GetFileAttributesW
0x51c364 GetFullPathNameW
0x51c36c FindFirstFileW
0x51c370 FindClose
0x51c374 GetCurrentProcess
0x51c378 DuplicateHandle
0x51c37c GetFileSize
0x51c380 SetEndOfFile
0x51c384 UnlockFile
0x51c388 LockFile
0x51c38c FlushFileBuffers
0x51c390 SetFilePointer
0x51c394 WriteFile
0x51c398 ReadFile
0x51c39c CreateFileW
0x51c3a0 lstrcmpiW
0x51c3a4 DeleteFileW
0x51c3b0 GetSystemDirectoryW
0x51c3b4 GlobalGetAtomNameW
0x51c3b8 lstrlenA
0x51c3c0 GlobalFlags
0x51c3c4 TlsFree
0x51c3c8 LocalReAlloc
0x51c3cc TlsSetValue
0x51c3d0 TlsAlloc
0x51c3d8 GlobalHandle
0x51c3dc GlobalReAlloc
0x51c3e0 TlsGetValue
0x51c3e4 LocalAlloc
0x51c3e8 WideCharToMultiByte
0x51c3ec ResumeThread
0x51c3f0 SetThreadPriority
0x51c400 lstrcpyW
0x51c404 lstrcmpA
0x51c408 GetCurrentThread
0x51c418 CompareStringA
0x51c41c GetLocaleInfoW
0x51c420 LoadLibraryExW
0x51c424 InterlockedExchange
0x51c42c ReleaseActCtx
0x51c430 CreateActCtxW
Library USER32.dll:
0x51c4c8 SetMenuDefaultItem
0x51c4cc PostThreadMessageW
0x51c4d0 CreateMenu
0x51c4d4 IsMenu
0x51c4d8 UpdateLayeredWindow
0x51c4dc UnionRect
0x51c4e0 MonitorFromPoint
0x51c4e8 DrawMenuBar
0x51c4ec DefMDIChildProcW
0x51c4f0 DefFrameProcW
0x51c4f8 EndDialog
0x51c500 UnpackDDElParam
0x51c504 ReuseDDElParam
0x51c508 InsertMenuItemW
0x51c510 GetIconInfo
0x51c514 EnableScrollBar
0x51c518 HideCaret
0x51c51c InvertRect
0x51c520 GetMenuDefaultItem
0x51c524 LockWindowUpdate
0x51c528 BringWindowToTop
0x51c52c SetCursorPos
0x51c534 LoadAcceleratorsW
0x51c538 GetKeyboardState
0x51c53c GetKeyboardLayout
0x51c540 MapVirtualKeyW
0x51c544 ToUnicodeEx
0x51c548 DrawFocusRect
0x51c54c DrawFrameControl
0x51c550 DrawEdge
0x51c554 DrawIconEx
0x51c558 DrawStateW
0x51c55c GetSystemMenu
0x51c560 LoadMenuW
0x51c564 SetClassLongW
0x51c568 GetAsyncKeyState
0x51c56c NotifyWinEvent
0x51c570 CreatePopupMenu
0x51c578 SetParent
0x51c57c IsZoomed
0x51c580 DestroyIcon
0x51c584 IsIconic
0x51c588 MessageBeep
0x51c58c GetNextDlgTabItem
0x51c590 GetNextDlgGroupItem
0x51c594 IsRectEmpty
0x51c59c OffsetRect
0x51c5a0 CharUpperW
0x51c5a4 ReleaseCapture
0x51c5a8 WindowFromPoint
0x51c5ac SetCapture
0x51c5b0 InvalidateRect
0x51c5b4 DeleteMenu
0x51c5b8 UnregisterClassW
0x51c5bc EnumDisplayMonitors
0x51c5c0 SetRectEmpty
0x51c5c4 CopyImage
0x51c5c8 GetDesktopWindow
0x51c5d4 DestroyMenu
0x51c5d8 GetMenuItemInfoW
0x51c5dc ShowOwnedPopups
0x51c5e0 SetCursor
0x51c5e4 GetMessageW
0x51c5e8 TranslateMessage
0x51c5ec GetActiveWindow
0x51c5f0 GetCursorPos
0x51c5f4 MapDialogRect
0x51c5f8 WaitMessage
0x51c5fc PostQuitMessage
0x51c600 SetMenuItemBitmaps
0x51c608 ModifyMenuW
0x51c60c CheckMenuItem
0x51c610 IntersectRect
0x51c614 InflateRect
0x51c618 GetMenuState
0x51c61c GetMenuStringW
0x51c620 AppendMenuW
0x51c624 InsertMenuW
0x51c628 RemoveMenu
0x51c630 EndPaint
0x51c634 BeginPaint
0x51c638 GetWindowDC
0x51c63c ReleaseDC
0x51c640 ClientToScreen
0x51c644 GrayStringW
0x51c648 DrawTextExW
0x51c64c DrawTextW
0x51c650 TabbedTextOutW
0x51c654 FillRect
0x51c65c LoadIconW
0x51c660 SendDlgItemMessageA
0x51c664 WinHelpW
0x51c668 IsChild
0x51c66c GetCapture
0x51c670 SetWindowsHookExW
0x51c674 CallNextHookEx
0x51c678 GetClassLongW
0x51c67c GetClassNameW
0x51c680 SetPropW
0x51c684 GetPropW
0x51c688 RemovePropW
0x51c68c GetForegroundWindow
0x51c690 GetLastActivePopup
0x51c694 SetActiveWindow
0x51c698 DispatchMessageW
0x51c69c BeginDeferWindowPos
0x51c6a0 EndDeferWindowPos
0x51c6a4 GetTopWindow
0x51c6a8 DestroyWindow
0x51c6ac UnhookWindowsHookEx
0x51c6b0 GetMessageTime
0x51c6b4 GetMessagePos
0x51c6b8 PeekMessageW
0x51c6bc MonitorFromWindow
0x51c6c0 GetMonitorInfoW
0x51c6c4 MapWindowPoints
0x51c6c8 ScrollWindow
0x51c6cc TrackPopupMenu
0x51c6d0 GetKeyState
0x51c6d4 SetMenu
0x51c6d8 SetScrollRange
0x51c6dc GetScrollRange
0x51c6e0 SetScrollPos
0x51c6e4 GetScrollPos
0x51c6e8 SetForegroundWindow
0x51c6ec ShowScrollBar
0x51c6f0 IsWindowVisible
0x51c6f4 ValidateRect
0x51c6f8 UpdateWindow
0x51c6fc GetClientRect
0x51c700 PostMessageW
0x51c704 GetSubMenu
0x51c708 GetMenuItemID
0x51c70c GetMenuItemCount
0x51c710 CreateWindowExW
0x51c714 GetClassInfoExW
0x51c718 GetClassInfoW
0x51c71c RegisterClassW
0x51c720 GetSysColor
0x51c724 AdjustWindowRectEx
0x51c728 ScreenToClient
0x51c72c EqualRect
0x51c730 DeferWindowPos
0x51c734 GetScrollInfo
0x51c738 SetScrollInfo
0x51c73c GetWindowRgn
0x51c740 DestroyCursor
0x51c744 DrawIcon
0x51c748 SubtractRect
0x51c74c MapVirtualKeyExW
0x51c750 GetKeyNameTextW
0x51c754 IsCharLowerW
0x51c758 GetDoubleClickTime
0x51c75c CharUpperBuffW
0x51c760 SetWindowPlacement
0x51c764 GetWindowPlacement
0x51c768 DefWindowProcW
0x51c76c CallWindowProcW
0x51c770 GetMenu
0x51c774 CopyRect
0x51c778 PtInRect
0x51c780 GetWindowTextW
0x51c784 GetFocus
0x51c788 SetFocus
0x51c78c CopyIcon
0x51c790 EmptyClipboard
0x51c794 CloseClipboard
0x51c798 FrameRect
0x51c79c OpenClipboard
0x51c7a0 EnableMenuItem
0x51c7a4 GetUpdateRect
0x51c7a8 SetWindowPos
0x51c7ac GetParent
0x51c7b0 SendMessageW
0x51c7b4 IsWindowEnabled
0x51c7b8 ShowWindow
0x51c7bc MoveWindow
0x51c7c0 SetWindowLongW
0x51c7c4 GetDlgCtrlID
0x51c7c8 IsWindow
0x51c7cc SetWindowTextW
0x51c7d0 GetWindowLongW
0x51c7d4 IsDialogMessageW
0x51c7d8 SendDlgItemMessageW
0x51c7dc GetDlgItem
0x51c7e0 CheckDlgButton
0x51c7e4 GetWindow
0x51c7e8 MessageBoxW
0x51c7ec wsprintfW
0x51c7f0 LoadStringW
0x51c7f4 EnableWindow
0x51c7f8 KillTimer
0x51c7fc GetDC
0x51c800 SetTimer
0x51c804 RedrawWindow
0x51c808 LoadImageW
0x51c80c SetWindowRgn
0x51c810 GetWindowRect
0x51c814 GetSystemMetrics
0x51c818 LoadBitmapW
0x51c81c RegisterClassExW
0x51c820 GetSysColorBrush
0x51c824 LoadCursorW
0x51c828 SetRect
0x51c830 SetClipboardData
Library GDI32.dll:
0x51c040 GetLayout
0x51c044 SetLayout
0x51c048 SelectClipRgn
0x51c04c GetViewportExtEx
0x51c050 GetWindowExtEx
0x51c054 PtVisible
0x51c058 RectVisible
0x51c05c TextOutW
0x51c060 ExtTextOutW
0x51c064 Escape
0x51c068 SetViewportOrgEx
0x51c06c OffsetViewportOrgEx
0x51c070 SetViewportExtEx
0x51c074 ScaleViewportExtEx
0x51c078 SetWindowOrgEx
0x51c07c OffsetWindowOrgEx
0x51c080 SetWindowExtEx
0x51c084 ScaleWindowExtEx
0x51c088 ExtSelectClipRgn
0x51c08c DeleteDC
0x51c090 CreatePatternBrush
0x51c094 CreateBitmap
0x51c098 SelectPalette
0x51c09c GetObjectType
0x51c0a0 GetDeviceCaps
0x51c0a4 CreatePen
0x51c0a8 CreateSolidBrush
0x51c0ac CreateHatchBrush
0x51c0b0 CopyMetaFileW
0x51c0b4 CreateDCW
0x51c0bc SetRectRgn
0x51c0c0 PatBlt
0x51c0c4 DPtoLP
0x51c0cc CreateDIBitmap
0x51c0d0 SetTextAlign
0x51c0d4 GetTextMetricsW
0x51c0d8 EnumFontFamiliesW
0x51c0dc GetTextCharsetInfo
0x51c0e0 GetBkColor
0x51c0e4 GetTextColor
0x51c0e8 GetRgnBox
0x51c0ec CreateDIBSection
0x51c0f0 CreateRoundRectRgn
0x51c0f4 CreatePolygonRgn
0x51c0f8 CreateEllipticRgn
0x51c0fc Polyline
0x51c100 Ellipse
0x51c104 Polygon
0x51c108 CreatePalette
0x51c10c GetPaletteEntries
0x51c114 RealizePalette
0x51c11c OffsetRgn
0x51c120 SetDIBColorTable
0x51c124 StretchBlt
0x51c128 SetPixel
0x51c12c Rectangle
0x51c130 EnumFontFamiliesExW
0x51c134 LPtoDP
0x51c138 GetWindowOrgEx
0x51c13c GetViewportOrgEx
0x51c140 PtInRegion
0x51c144 FillRgn
0x51c148 FrameRgn
0x51c14c GetBoundsRect
0x51c150 ExtFloodFill
0x51c154 SetPaletteEntries
0x51c158 GetTextFaceW
0x51c15c SetPixelV
0x51c160 LineTo
0x51c164 MoveToEx
0x51c168 IntersectClipRect
0x51c16c ExcludeClipRect
0x51c170 GetClipBox
0x51c174 SetMapMode
0x51c178 SetROP2
0x51c17c SetPolyFillMode
0x51c180 SetBkMode
0x51c184 RestoreDC
0x51c188 SaveDC
0x51c18c SetBkColor
0x51c190 SetTextColor
0x51c194 BitBlt
0x51c198 DeleteObject
0x51c19c CombineRgn
0x51c1a0 CreateRectRgn
0x51c1a4 GetPixel
0x51c1a8 SelectObject
0x51c1ac CreateCompatibleDC
0x51c1b0 GetStockObject
0x51c1b8 GetObjectW
0x51c1bc CreateFontIndirectW
Library MSIMG32.dll:
0x51c438 AlphaBlend
0x51c43c TransparentBlt
Library COMDLG32.dll:
0x51c038 GetFileTitleW
Library WINSPOOL.DRV:
0x51c850 ClosePrinter
0x51c854 OpenPrinterW
0x51c858 DocumentPropertiesW
Library ADVAPI32.dll:
0x51c000 RegOpenKeyExW
0x51c004 RegQueryValueExW
0x51c008 RegCreateKeyExW
0x51c00c RegSetValueExW
0x51c010 RegDeleteValueW
0x51c014 RegDeleteKeyW
0x51c018 RegEnumKeyW
0x51c01c RegQueryValueW
0x51c020 RegCloseKey
0x51c024 RegEnumKeyExW
0x51c028 RegEnumValueW
Library SHELL32.dll:
0x51c480 DragFinish
0x51c484 ShellExecuteW
0x51c488 SHGetDesktopFolder
0x51c494 SHAppBarMessage
0x51c498 DragQueryFileW
0x51c49c CommandLineToArgvW
0x51c4a0 SHGetFileInfoW
0x51c4a4 SHBrowseForFolderW
Library COMCTL32.dll:
Library SHLWAPI.dll:
0x51c4ac PathFindFileNameW
0x51c4b0 PathStripToRootW
0x51c4b4 PathIsUNCW
0x51c4b8 PathFindExtensionW
0x51c4bc PathRemoveFileSpecW
Library ole32.dll:
0x51c8bc CoUninitialize
0x51c8c0 CoInitialize
0x51c8c4 CoCreateInstance
0x51c8c8 CoCreateGuid
0x51c8cc OleDuplicateData
0x51c8d0 ReleaseStgMedium
0x51c8e0 IsAccelerator
0x51c8e4 OleLockRunning
0x51c8ec DoDragDrop
0x51c8f0 RevokeDragDrop
0x51c8f8 RegisterDragDrop
0x51c8fc OleGetClipboard
0x51c900 CoTaskMemFree
0x51c904 CoInitializeEx
0x51c908 CoTaskMemAlloc
Library OLEAUT32.dll:
0x51c454 VarBstrFromDate
0x51c460 SysStringLen
0x51c464 SysAllocString
0x51c468 VariantInit
0x51c46c VariantChangeType
0x51c470 VariantClear
0x51c474 SysAllocStringLen
0x51c478 SysFreeString
Library gdiplus.dll:
0x51c860 GdipAlloc
0x51c864 GdipDrawImageI
0x51c870 GdipBitmapLockBits
0x51c87c GdipGetImagePalette
0x51c888 GdipGetImageHeight
0x51c88c GdipGetImageWidth
0x51c890 GdipCloneImage
0x51c894 GdipDrawImageRectI
0x51c89c GdipCreateFromHDC
0x51c8a0 GdiplusShutdown
0x51c8a4 GdiplusStartup
0x51c8ac GdipDisposeImage
0x51c8b0 GdipDeleteGraphics
0x51c8b4 GdipFree
Library OLEACC.dll:
0x51c444 LresultFromObject
Library IMM32.dll:
0x51c1c4 ImmGetOpenStatus
0x51c1c8 ImmReleaseContext
0x51c1cc ImmGetContext
Library WINMM.dll:
0x51c848 PlaySoundW

Hosts

No hosts contacted.

TCP

No TCP connections recorded.

UDP

Source Source Port Destination Destination Port
192.168.56.101 51378 114.114.114.114 53
192.168.56.101 51963 114.114.114.114 53
192.168.56.101 55368 114.114.114.114 53
192.168.56.101 56539 114.114.114.114 53
192.168.56.101 137 192.168.56.255 137
192.168.56.101 138 192.168.56.255 138
192.168.56.101 49713 224.0.0.252 5355
192.168.56.101 53237 224.0.0.252 5355
192.168.56.101 53657 224.0.0.252 5355
192.168.56.101 56804 224.0.0.252 5355
192.168.56.101 58367 224.0.0.252 5355
192.168.56.101 60123 224.0.0.252 5355
192.168.56.101 61680 224.0.0.252 5355
192.168.56.101 62191 224.0.0.252 5355
192.168.56.101 62318 224.0.0.252 5355
192.168.56.101 65004 224.0.0.252 5355
192.168.56.101 1900 239.255.255.250 1900
192.168.56.101 53658 239.255.255.250 3702
192.168.56.101 55369 239.255.255.250 3702
192.168.56.101 58707 239.255.255.250 3702

HTTP & HTTPS Requests

No HTTP requests performed.

ICMP traffic

No ICMP traffic performed.

IRC traffic

No IRC requests performed.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Snort Alerts

No Snort Alerts

Sorry! No dropped files.
Sorry! No dropped buffers.