vcruntime140.dll
First submission 2022-10-04 08:47:03
File details
| File type: | PE32 executable (DLL) (console) Intel 80386, for MS Windows |
| File type: | 78.25 KB (80128 bytes) |
| Compile time: | 2018-10-13 01:04:53 |
| MD5: | 1b171f9a428c44acf85f89989007c328 |
| SHA1: | 6f25a874d6cbf8158cb7c491dcedaa81ceaebbae |
| SHA256: | 9d02e952396bdff3abfe5654e07b7a713c84268a225e11ed9a3bf338ed1e424c |
| Import Hash : | 6a84b7445ccacd5d29ac27de2745f356 |
| Sections 5 | .text��� .data��� .idata�� .rsrc��� .reloc�� |
| Directories 6 | security relocation debug resource export import |
| Virus Total: | 0/70 VT report date: 2022-10-03 23:34:55 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
URLs, FQDN and IP indicators 133
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://94.142.138.10/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll  |
94.142.138.10 |
2023-02-02 12:42:04 |
| hXXp://83.217.11.23/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
83.217.11.23 |
2023-01-24 09:44:07 |
| hXXp://79.137.197.160/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
79.137.197.160 |
2023-01-24 09:21:05 |
| hXXp://89.238.185.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
89.238.185.17 |
2023-01-24 09:19:06 |
| hXXp://91.107.180.190/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
91.107.180.190 |
2023-01-19 16:54:08 |
| hXXp://51.81.254.14/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
51.81.254.14 |
2023-01-11 08:54:05 |
| hXXp://195.133.40.221/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
195.133.40.221 |
2023-01-10 07:59:04 |
| hXXp://167.235.29.56/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
167.235.29.56 |
2023-01-09 08:44:04 |
| hXXp://87.251.77.45/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
87.251.77.45 |
2023-01-08 17:56:03 |
| hXXp://85.192.63.204/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
85.192.63.204 |
2023-01-06 21:04:03 |
| hXXp://5.252.118.36/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
5.252.118.36 |
2023-01-06 21:03:04 |
| hXXp://147.135.62.202/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
147.135.62.202 |
2023-01-06 05:34:05 |
| hXXp://104.234.147.80/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
104.234.147.80 |
2023-01-05 21:11:19 |
| hXXp://77.73.133.119/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
77.73.133.119 |
2023-01-05 08:52:04 |
| hXXp://193.3.23.11/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
193.3.23.11 |
2022-12-28 07:49:04 |
| hXXp://185.234.247.220/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
185.234.247.220 |
2022-12-26 08:38:04 |
| hXXp://93.185.166.49/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
93.185.166.49 |
2022-12-25 18:20:04 |
| hXXp://152.89.247.84/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
152.89.247.84 |
2022-12-25 08:49:05 |
| hXXp://194.87.216.120/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
194.87.216.120 |
2022-12-24 08:00:06 |
| hXXp://195.133.75.104/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
195.133.75.104 |
2022-12-23 05:10:05 |
| hXXp://5.252.118.177/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
5.252.118.177 |
2022-12-22 13:25:04 |
| hXXp://91.215.85.146/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
91.215.85.146 |
2022-12-18 16:49:03 |
| hXXp://179.43.142.85/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
179.43.142.85 |
2022-12-18 15:10:04 |
| hXXp://212.192.31.175/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
212.192.31.175 |
2022-12-18 12:49:04 |
| hXXp://194.4.49.101/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
194.4.49.101 |
2022-12-18 07:42:04 |
| hXXp://45.15.156.179/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.179 |
2022-12-18 02:50:04 |
| hXXp://94.131.98.162/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
94.131.98.162 |
2022-12-17 09:27:06 |
| hXXp://88.119.170.115/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
88.119.170.115 |
2022-12-17 08:33:03 |
| hXXp://80.92.205.177/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
80.92.205.177 |
2022-12-08 09:05:05 |
| hXXp://45.153.240.247/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.153.240.247 |
2022-12-06 07:59:04 |
| hXXp://74.119.195.225/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
74.119.195.225 |
2022-12-05 20:52:06 |
| hXXp://92.204.160.116/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
92.204.160.116 |
2022-12-02 18:12:03 |
| hXXp://45.15.156.38/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.38 |
2022-11-29 16:12:04 |
| hXXp://65.108.248.168/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
65.108.248.168 |
2022-11-29 07:12:04 |
| hXXp://185.173.34.39/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
185.173.34.39 |
2022-11-28 20:26:03 |
| hXXp://respekt5567.com/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
respekt5567.com |
2022-11-28 20:11:03 |
| hXXp://45.84.240.72/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.84.240.72 |
2022-11-28 16:08:04 |
| hXXp://37.220.87.6/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
37.220.87.6 |
2022-11-27 08:18:04 |
| hXXp://79.137.196.11/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
79.137.196.11 |
2022-11-25 12:23:04 |
| hXXp://193.149.185.168/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
193.149.185.168 |
2022-11-20 07:42:03 |
| hXXp://185.246.220.214/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
185.246.220.214 |
2022-11-19 05:39:46 |
| hXXp://89.208.103.56/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
89.208.103.56 |
2022-11-18 08:28:48 |
| hXXp://193.47.61.188/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
193.47.61.188 |
2022-11-16 21:47:49 |
| hXXp://172.86.121.106/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
172.86.121.106 |
2022-11-16 14:11:30 |
| hXXp://45.67.35.17/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.67.35.17 |
2022-11-16 14:06:56 |
| hXXp://45.15.156.40/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.40 |
2022-11-16 09:53:28 |
| hXXp://176.113.115.217/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
176.113.115.217 |
2022-11-16 09:00:46 |
| hXXp://45.15.156.120/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.120 |
2022-11-16 08:07:45 |
| hXXp://146.70.125.95/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
146.70.125.95 |
2022-11-14 08:24:39 |
| hXXp://88.210.6.78/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
88.210.6.78 |
2022-11-13 09:47:39 |
| hXXp://45.15.156.102/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.102 |
2022-11-12 09:05:43 |
| hXXp://93.185.166.95/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
93.185.166.95 |
2022-11-12 08:56:35 |
| hXXp://77.73.133.92/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
77.73.133.92 |
2022-11-12 08:52:40 |
| hXXp://89.185.85.230/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
89.185.85.230 |
2022-11-11 20:02:45 |
| hXXp://146.70.139.240/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
146.70.139.240 |
2022-11-11 12:15:51 |
| hXXp://164.92.186.156/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
164.92.186.156 |
2022-11-11 11:26:50 |
| hXXp://79.137.205.87/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
79.137.205.87 |
2022-11-11 09:07:45 |
| hXXp://167.235.134.14/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
167.235.134.14 |
2022-11-10 21:05:28 |
| hXXp://193.149.187.118/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
193.149.187.118 |
2022-11-10 21:04:58 |
| hXXp://45.140.147.122/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.140.147.122 |
2022-11-10 08:50:37 |
| hXXp://87.236.161.20/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
87.236.161.20 |
2022-11-09 21:27:37 |
| hXXp://45.15.156.90/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.90 |
2022-11-08 21:23:36 |
| hXXp://79.137.195.225/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
79.137.195.225 |
2022-11-08 16:54:36 |
| hXXp://135.181.185.150/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
135.181.185.150 |
2022-11-08 08:12:35 |
| hXXp://94.131.109.157/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
94.131.109.157 |
2022-11-07 14:10:38 |
| hXXp://87.251.77.253/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
87.251.77.253 |
2022-11-07 08:25:35 |
| hXXp://146.70.160.4/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
146.70.160.4 |
2022-11-07 08:05:36 |
| hXXp://5.252.177.64/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
5.252.177.64 |
2022-11-06 07:50:36 |
| hXXp://88.119.171.176/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
88.119.171.176 |
2022-11-05 19:04:41 |
| hXXp://data-file-data-7.com/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
data-file-data-7.com |
2022-11-05 06:54:24 |
| hXXp://95.141.41.13/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
95.141.41.13 |
2022-11-05 06:46:35 |
| hXXp://159.69.241.241/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
159.69.241.241 |
2022-11-04 20:38:40 |
| hXXp://185.106.92.25/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
185.106.92.25 |
2022-10-14 21:19:22 |
| hXXp://80.66.87.23/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
80.66.87.23 |
2022-10-14 07:51:57 |
| hXXp://88.119.170.188/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
88.119.170.188 |
2022-10-14 07:31:07 |
| hXXp://179.43.163.117/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
179.43.163.117 |
2022-10-14 07:17:13 |
| hXXp://79.137.197.212/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
79.137.197.212 |
2022-11-03 21:38:22 |
| hXXp://45.15.156.105/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.105 |
2022-11-03 21:23:22 |
| hXXp://51.79.211.202/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
51.79.211.202 |
2022-11-03 21:19:34 |
| hXXp://94.158.244.114/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
94.158.244.114 |
2022-10-13 14:40:11 |
| hXXp://194.87.216.7/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
194.87.216.7 |
2022-10-13 09:11:14 |
| hXXp://65.108.20.41/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
65.108.20.41 |
2022-11-02 15:48:28 |
| hXXp://84.246.85.153/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
84.246.85.153 |
2022-11-02 09:03:28 |
| hXXp://188.93.233.101/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
188.93.233.101 |
2022-10-12 17:34:11 |
| hXXp://91.240.118.160/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
91.240.118.160 |
2022-11-01 07:21:16 |
| hXXp://77.73.133.1/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
77.73.133.1 |
2022-10-11 08:30:03 |
| hXXp://45.67.35.251/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.67.35.251 |
2022-10-11 08:29:03 |
| hXXp://31.41.244.137/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
31.41.244.137 |
2022-10-31 09:33:10 |
| hXXp://77.73.133.7/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
77.73.133.7 |
2022-10-10 16:08:06 |
| hXXp://88.119.171.205/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
88.119.171.205 |
2022-10-30 11:56:04 |
| hXXp://45.67.231.202/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.67.231.202 |
2022-10-10 14:37:08 |
| hXXp://51.68.28.231/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
51.68.28.231 |
2022-10-29 21:07:04 |
| hXXp://193.233.48.6/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
193.233.48.6 |
2022-10-29 19:13:03 |
| hXXp://89.208.103.222/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
89.208.103.222 |
2022-10-29 18:09:03 |
| hXXp://31.41.244.153/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
31.41.244.153 |
2022-10-29 17:55:04 |
| hXXp://146.70.86.136/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
146.70.86.136 |
2022-10-29 09:06:34 |
| hXXp://45.89.55.178/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.89.55.178 |
2022-10-09 10:32:04 |
| hXXp://94.131.97.157/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
94.131.97.157 |
2022-10-09 10:31:03 |
| hXXp://167.114.45.110/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
167.114.45.110 |
2022-10-09 09:55:04 |
| hXXp://5.252.21.191/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
5.252.21.191 |
2022-10-09 09:38:04 |
| hXXp://45.8.144.183/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.8.144.183 |
2022-10-28 14:29:21 |
| hXXp://176.124.207.141/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
176.124.207.141 |
2022-10-28 14:28:32 |
| hXXp://94.131.109.53/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
94.131.109.53 |
2022-10-27 18:32:23 |
| hXXp://45.15.156.72/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.72 |
2022-10-27 18:19:31 |
| hXXp://89.185.85.151/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
89.185.85.151 |
2022-10-26 20:05:29 |
| hXXp://85.192.63.175/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
85.192.63.175 |
2022-10-07 20:58:03 |
| hXXp://46.249.35.162/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
46.249.35.162 |
2022-10-07 20:50:03 |
| hXXp://45.8.146.34/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.8.146.34 |
2022-10-07 20:40:03 |
| hXXp://84.246.85.178/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
84.246.85.178 |
2022-10-07 19:29:03 |
| hXXp://89.185.85.175/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
89.185.85.175 |
2022-10-07 19:27:07 |
| hXXp://45.15.156.56/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.56 |
2022-10-26 13:58:24 |
| hXXp://151.236.1.121/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
151.236.1.121 |
2022-10-26 12:03:21 |
| hXXp://79.137.192.29/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
79.137.192.29 |
2022-10-26 10:10:21 |
| hXXp://82.115.223.5/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
82.115.223.5 |
2022-10-26 09:05:14 |
| hXXp://45.8.144.153/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.8.144.153 |
2022-10-26 08:41:20 |
| hXXp://23.229.117.245/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
23.229.117.245 |
2022-10-25 16:03:21 |
| hXXp://45.89.55.113/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.89.55.113 |
2022-10-06 11:51:08 |
| hXXp://193.106.191.150/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
193.106.191.150 |
2022-10-06 11:43:12 |
| hXXp://111.90.149.168/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
111.90.149.168 |
2022-10-25 12:01:22 |
| hXXp://45.150.67.85/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.150.67.85 |
2022-10-05 20:46:08 |
| hXXp://206.166.251.218/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
206.166.251.218 |
2022-10-05 20:30:09 |
| hXXp://45.67.231.93/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.67.231.93 |
2022-10-05 20:26:11 |
| hXXp://172.86.120.142/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
172.86.120.142 |
2022-10-24 11:16:19 |
| hXXp://89.22.226.85/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
89.22.226.85 |
2022-10-23 20:03:09 |
| hXXp://23.229.117.249/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
23.229.117.249 |
2022-10-23 19:54:10 |
| hXXp://5.255.103.158/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
5.255.103.158 |
2022-10-23 08:51:14 |
| hXXp://45.15.156.36/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.36 |
2022-10-22 15:21:15 |
| hXXp://94.158.247.34/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
94.158.247.34 |
2022-10-22 08:35:10 |
| hXXp://45.15.156.31/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.15.156.31 |
2022-10-21 09:26:08 |
| hXXp://45.147.231.141/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.147.231.141 |
2022-10-04 08:47:03 |
| hXXp://45.147.231.4/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.147.231.4 |
2022-10-19 08:10:07 |
| hXXp://31.41.244.88/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
31.41.244.88 |
2022-10-17 20:23:04 |
| hXXp://45.147.231.42/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll |
45.147.231.42 |
2022-10-16 16:31:03 |
PE Sections 0 suspicious
| Name | VAddress | VSize | Size | SHA1 | MD5 | Suspicious |
|---|---|---|---|---|---|---|
| .text��� | 0x1000 | 0xdcf4 | 56832 | 3da089e38b693defcdc48a5bc9de6c752fa5cd46 | 28f8accc52cc26fb1cd342e0b86da949 | |
| .data��� | 0xf000 | 0x5f4 | 512 | 8f20f51d3120a29f73f5eac966c2c3d707e745a2 | 44f568c10e74e073142f81fd4e04d7e6 | |
| .idata�� | 0x10000 | 0x584 | 1536 | 105faec2dc8fcd60857288724616c55d1b26093e | 815d869d862ccfa9c90b3f4063cd90eb | |
| .rsrc��� | 0x11000 | 0x400 | 1024 | 145f6c89caf270e4bcebe93b986c04955d74be72 | 235918684f09b52b872f0a25b7267fe6 | |
| .reloc�� | 0x12000 | 0xa10 | 3072 | 35afbc8e084e566a5b966b515fe5cd58e837b1c0 | 8d6967b67a7b3932ec34879053146032 |
PE Resources 1
| Name | Language | Sublanguage | Offset | Size | Data |
|---|---|---|---|---|---|
| RT_VERSION | LANG_ENGLISH | SUBLANG_ENGLISH_US | 0x11060 | 928 |
Meta infos 9
| FileDescription: | Microsoft\xae C Runtime Library |
| LegalCopyright: | \xa9 Microsoft Corporation. All rights reserved. |
| Translation: | 0x0409 0x04b0 |
| InternalName: | vcruntime140.dll |
| ProductName: | Microsoft\xae Visual Studio\xae 2017 |
| CompanyName: | Microsoft Corporation |
| FileVersion: | 14.16.27012.6 built by: vcwrkspc |
| OriginalFilename: | vcruntime140.dll |
| ProductVersion: | 14.16.27012.6 |
Packers detected 1
| Borland Delphi 3.0 (???) |
Anti debug functions 5
| GetLastError |
| IsProcessorFeaturePresent |
| RaiseException |
| TerminateProcess |
| UnhandledExceptionFilter |
File signature
| MD5 | SHA1 | Block size | Virtual Address |
|---|---|---|---|
| cee32daf41a8cac84c026df54e3efc54 | b56477419af673365dacb941eb2583f80aa17fdb | 16128 | 64000 |
Strings analysis - File found
| Library |
| api-ms-win-crt-convert-l1-1-0.dll |
| api-ms-win-crt-stdio-l1-1-0.dll |
| KERNEL32.dll |
| api-ms-win-crt-runtime-l1-1-0.dll |
| api-ms-win-crt-heap-l1-1-0.dll |
| api-ms-win-crt-string-l1-1-0.dll |
| vcruntime140.dll |
Strings analysis - Possible URLs found 17
| http://www.microsoft.com/pkiops/crl/MicCodSigPCA2011_2011-07-08.crl0a |
| http://www.microsoft.com/pki/certs/MicrosoftRootCert.crt0 |
| http://www.microsoft.com0 |
| http://www.microsoft.com/PKI/docs/CPS/default.htm0@ |
| http://crl.microsoft.com/pki/crl/products/MicTimStaPCA_2010-07-01.crl0Z |
| http://www.microsoft.com/pki/certs/MicTimStaPCA_2010-07-01.crt0 |
| http://www.microsoft.com/pki/certs/MicrosoftTimeStampPCA.crt0 |
| http://www.microsoft.com/pki/certs/MicCodSigPCA_08-31-2010.crt0 |
| http://www.microsoft.com/pki/certs/MicRooCerAut2011_2011_03_22.crt0 |
| http://crl.microsoft.com/pki/crl/products/microsoftrootcert.crl0T |
| http://crl.microsoft.com/pki/crl/products/MicCodSigPCA_08-31-2010.crl0Z |
| http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl0 |
| http://www.microsoft.com/pkiops/certs/MicCodSigPCA2011_2011-07-08.crt0 |
| http://crl.microsoft.com/pki/crl/products/MicrosoftTimeStampPCA.crl0X |
| http://www.microsoft.com/pkiops/docs/primarycps.htm0@ |
| http://crl.microsoft.com/pki/crl/products/MicRooCerAut_2010-06-23.crl0Z |
| http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt0 |
Import functions
PE Exports 81 suspicious
| Function | Address |
|---|---|
| wcsstr | 0x10004170 |
| wcsrchr | 0x100040c0 |
| wcschr | 0x10003ff0 |
| unexpected | 0x10007760 |
| strstr | 0x100036b0 |
| strrchr | 0x10003570 |
| strchr | 0x10003440 |
| set_unexpected | 0x10007740 |
| memset | 0x100032e0 |
| memmove | 0x10002d60 |
| memcpy | 0x100027e0 |
| memcmp | 0x10004a90 |
| memchr | 0x10002730 |
| longjmp | 0x10003fd0 |
| _setjmp3 | 0x10003da0 |
| _set_se_translator | 0x10007780 |
| _set_purecall_handler | 0x10007da0 |
| _seh_longjmp_unwind4 | 0x10003c08 |
| _seh_longjmp_unwind | 0x10003b04 |
| _purecall | 0x10007d80 |
| _longjmpex | 0x10003e20 |
| _local_unwind4 | 0x10003b30 |
| _local_unwind2 | 0x10003e96 |
| _is_exception_typeof | 0x10005c40 |
| _global_unwind2 | 0x10003e30 |
| _get_unexpected | 0x10007720 |
| _get_purecall_handler | 0x10007d60 |
| _except_handler4_common | 0x10004480 |
| _except_handler3 | 0x100039f8 |
| _except_handler2 | 0x10003928 |
| _chkesp | 0x100045e0 |
| __vcrt_LoadLibraryExW | 0x10007d40 |
| __vcrt_InitializeCriticalSectionEx | 0x10007c60 |
| __vcrt_GetModuleHandleW | 0x10007d30 |
| __vcrt_GetModuleFileNameW | 0x10007d10 |
| __uncaught_exceptions | 0x10007710 |
| __uncaught_exception | 0x100076f0 |
| __unDNameEx | 0x1000d410 |
| __unDName | 0x1000d3e0 |
| __telemetry_main_return_trigger | 0x10003f70 |
| __telemetry_main_invoke_trigger | 0x10003f70 |
| __std_type_info_name | 0x100075b0 |
| __std_type_info_hash | 0x10007580 |
| __std_type_info_destroy_list | 0x10007550 |
| __std_type_info_compare | 0x10007510 |
| __std_terminate | 0x10005c30 |
| __std_exception_destroy | 0x100074d0 |
| __std_exception_copy | 0x10007460 |
| __report_gsfailure | 0x1000df80 |
| __processing_throw | 0x10005c20 |
| __intrinsic_setjmp | 0x10003d60 |
| __current_exception_context | 0x10005c10 |
| __current_exception | 0x10005c00 |
| __TypeMatch | 0x10006a80 |
| __RTtypeid | 0x100073d0 |
| __RTDynamicCast | 0x100072d0 |
| __RTCastToVoid | 0x10007250 |
| __GetPlatformExceptionInfo | 0x10005bb0 |
| __FrameUnwindFilter | 0x10005b60 |
| __DestructExceptionObject | 0x10005a40 |
| __CxxUnregisterExceptionObject | 0x10006ce0 |
| __CxxRegisterExceptionObject | 0x10006c30 |
| __CxxQueryExceptionSize | 0x10006c20 |
| __CxxLongjmpUnwind | 0x1000d8f0 |
| __CxxFrameHandler3 | 0x1000d8b0 |
| __CxxFrameHandler2 | 0x1000d8b0 |
| __CxxFrameHandler | 0x1000d8b0 |
| __CxxExceptionFilter | 0x10006ae0 |
| __CxxDetectRethrow | 0x10006a90 |
| __BuildCatchObjectHelper | 0x10006a70 |
| __BuildCatchObject | 0x10006a60 |
| __AdjustPointer | 0x10005b30 |
| _SetWinRTOutOfMemoryExceptionCallback | 0x10005b20 |
| _NLG_Return2 | 0x10003f6d |
| _NLG_Return | 0x10002707 |
| _NLG_Dispatch2 | 0x10003f63 |
| _IsExceptionObjectToBeDestroyed | 0x10005af0 |
| _FindAndUnlinkFrame | 0x1000d7d0 |
| _EH_prolog | 0x1000df30 |
| _CxxThrowException | 0x10007680 |
| _CreateFrameInfo | 0x1000d7a0 |