Click to jump to signature section
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Static PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE |
Source: | Binary string: D:\test\H265-DEC\Branches\P_2015.06.15_H265_DEC_OpenHevcDec\build\vs2010\Release\HevcdecLib.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, hevcdec.dll.0.dr |
Source: | Binary string: E:\fish_eye_from_wangsong0416\testbed\vs2008\Release\fisheye.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002CBA000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, fisheye.dll.0.dr |
Source: | Binary string: D:\newpath\JPEG-DEC\Trunk\build\vs2010\demo\Release\jpeg_dec.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002B15000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, mjpegdec.dll.0.dr |
Source: | Binary string: D:\newpath\JPEG-DEC\Trunk\build\vs2010\demo\Release\jpeg_dec.pdbP source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002B15000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, mjpegdec.dll.0.dr |
Source: | Binary string: D:\1h264dec_test\mpeg4_postprocess\build\vs2010\demo\Release\postproc.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002BD5000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, postproc.dll.0.dr |
Source: | Binary string: D:\projects\gun_PTZ\export\x86\win\MCL_FPTZ_Win32.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp, MCL_FPTZ.dll.0.dr, nsbA248.tmp.0.dr |
Source: | Binary string: d:\SC_NEW\StreamConvertor\Lib\Win32\C-vs2005shared\StreamConvertor.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, StreamConvertor.dll.0.dr |
Source: | Binary string: D:\projects\gun_PTZ\export\x86\win\MCL_FPTZ_Win32.pdbP source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp, MCL_FPTZ.dll.0.dr, nsbA248.tmp.0.dr |
Source: | Binary string: D:\1h264dec_test\mpeg4_postprocess\build\vs2010\demo\Release\postproc.pdb`W`t` source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002BD5000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, postproc.dll.0.dr |
Source: | Binary string: T:\codec\mpeg4\PC_Mpeg4_DEC_Windows\build\vs2010_x86\mpeg4dec_x86\dllmpeg4dec\Release\mpeg4dec.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002E7E000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, mpeg4dec.dll.0.dr |
Source: | Binary string: D:\Work\Codecs\SVAC_1.0\Branches\svac_vs2005_test\platform\windows\lib\Win32\dll_svac_dec.pdb source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002F4F000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, svac_dec.dll.0.dr |
Source: C:\Users\user\Desktop\SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Code function: 0_2_00405E61 FindFirstFileA,FindClose, | 0_2_00405E61 |
Source: C:\Users\user\Desktop\SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Code function: 0_2_0040548B CloseHandle,DeleteFileA,lstrcatA,lstrcatA,lstrlenA,FindFirstFileA,DeleteFileA,FindNextFileA,FindClose,RemoveDirectoryA, | 0_2_0040548B |
Source: C:\Users\user\Desktop\SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Code function: 0_2_0040263E FindFirstFileA, | 0_2_0040263E |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, aacdec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio-AAC-DEC/Trunk |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, aacdec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio-AAC-DEC/Trunkw |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, g7221dec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio-G7221-DEC/Trunk |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, g7221dec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio-G7221-DEC/Trunk8 |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, g729dec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio_G729AB_DEC/Trunk |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, g729dec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio_G729AB_DEC/Trunklsp_stability |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660208041.0000000000409000.00000004.00000001.01000000.00000003.sdmp, mp2dec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio_Mpeg2l2_Dec/Trunk |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660208041.0000000000409000.00000004.00000001.01000000.00000003.sdmp, mp2dec.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/AUDIO_CODEC/Audio_Mpeg2l2_Dec/TrunkCorExitProcessmscoree.dllruntime |
Source: fisheye.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/BaseAlg/ImageProcess/FishEye/Trunk/fish_eye_from_wangsong |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, hevcdec.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/VIDEO_CODEC/H265-DEC/Branches/P_2015.06.15_H265_DEC_OpenHevcDec |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, hevcdec.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/VIDEO_CODEC/H265-DEC/Branches/P_2015.06.15_H265_DEC_OpenHevcDecCould |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002B15000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, mjpegdec.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/VIDEO_CODEC/JPEG-DEC/Trunk |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002B15000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, mjpegdec.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/VIDEO_CODEC/JPEG-DEC/TrunkX |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, swscale.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/ARI/VIDEO_CODEC/TOOLS/bilinear_scale/Trunk |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, StreamConvertor.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/PC/ENC_AAC/Trunk |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, StreamConvertor.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/PC/ENC_AAC/Trunkknipsycho |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002E7E000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, mpeg4dec.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/PC/MPEG4_DEC_FAST/Trunk/PC_Mpeg4_DEC_Windows |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002E7E000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, mpeg4dec.dll.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/PC/MPEG4_DEC_FAST/Trunk/PC_Mpeg4_DEC_Windows(null)(null) |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp, MCL_FPTZ.dll.0.dr, nsbA248.tmp.0.dr | String found in binary or memory: http://10.6.5.2/svnpl/CODEC/VIDEO_ARITH/PTZ/MTracking_PTZ/Trunk/SIML_PTZ/MS_zhucong |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, uninst.exe.0.dr | String found in binary or memory: http://nsis.sf.net/NSIS_Error |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, uninst.exe.0.dr | String found in binary or memory: http://nsis.sf.net/NSIS_ErrorError |
Source: StreamConvertor.dll.0.dr | String found in binary or memory: http://www.audiocoding.com/) |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, StreamConvertor.dll.0.dr | String found in binary or memory: http://www.openssl.org/support/faq.html |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp, nsbA248.tmp.0.dr, StreamConvertor.dll.0.dr | String found in binary or memory: http://www.openssl.org/support/faq.html.................... |
Source: C:\Users\user\Desktop\SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Code function: 0_2_00405042 GetDlgItem,GetDlgItem,GetDlgItem,GetDlgItem,GetClientRect,GetSystemMetrics,SendMessageA,SendMessageA,SendMessageA,SendMessageA,SendMessageA,SendMessageA,ShowWindow,ShowWindow,GetDlgItem,SendMessageA,SendMessageA,SendMessageA,GetDlgItem,CreateThread,FindCloseChangeNotification,ShowWindow,ShowWindow,ShowWindow,ShowWindow,SendMessageA,CreatePopupMenu,AppendMenuA,GetWindowRect,TrackPopupMenu,SendMessageA,OpenClipboard,EmptyClipboard,GlobalAlloc,GlobalLock,SendMessageA,GlobalUnlock,SetClipboardData,CloseClipboard, | 0_2_00405042 |
Source: C:\Program Files (x86)\webrec\WEB30\WebPlugin\WebActiveEXE.exe | Code function: 5_2_0040C479 GetKeyState,GetKeyState,GetKeyState,GetKeyState, | 5_2_0040C479 |
Source: C:\Program Files (x86)\webrec\WEB30\WebPlugin\TimeGridEXE.exe | Code function: 6_2_0040415E GetKeyState,GetKeyState,GetKeyState,GetKeyState, | 6_2_0040415E |
Source: C:\Users\user\Desktop\SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Code function: 0_2_0040323C EntryPoint,#17,SetErrorMode,OleInitialize,SHGetFileInfoA,GetCommandLineA,GetModuleHandleA,CharNextA,GetTempPathA,GetWindowsDirectoryA,lstrcatA,DeleteFileA,ExitProcess,OleUninitialize,ExitProcess,lstrcatA,lstrcmpiA,CreateDirectoryA,SetCurrentDirectoryA,DeleteFileA,CopyFileA,CloseHandle,GetCurrentProcess,ExitWindowsEx,ExitProcess, | 0_2_0040323C |
Source: C:\Users\user\Desktop\SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Code function: 0_2_00404853 | 0_2_00404853 |
Source: C:\Users\user\Desktop\SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Code function: 0_2_00406131 | 0_2_00406131 |
Source: C:\Program Files (x86)\webrec\WEB30\WebPlugin\WebActiveEXE.exe | Code function: 5_2_0040598A | 5_2_0040598A |
Source: C:\Program Files (x86)\webrec\WEB30\WebPlugin\WebActiveEXE.exe | Code function: String function: 0040E2F0 appears 46 times | |
Source: C:\Program Files (x86)\webrec\WEB30\WebPlugin\WebActiveEXE.exe | Code function: String function: 00410150 appears 38 times | |
Source: C:\Program Files (x86)\webrec\WEB30\WebPlugin\TimeGridEXE.exe | Code function: String function: 10009CBC appears 44 times | |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002E7E000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFileOperator.DLLd" vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002E7E000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilename vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002A7E000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilename vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameMCL_FPTZ.dll, vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002D55000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameHevcdecLib.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002CBA000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameIvsDrawer.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002CBA000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenamefisheye.dll, vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002CBA000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFisheyeCtrl.DLLb! vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002C53000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameWebActiveEXE.EXEH vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002BD5000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenamenpTimeGrid.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002BD5000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenametimeAxesDll.DLLb! vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002BD5000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameTimeGridEXE.EXEF vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002BD5000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameVideoWindow.DLL vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002B15000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameH264decLib.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilename vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameaacDec.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameg729Dec.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameg7221Dec.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameMP2L2Dec.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.00000000028A0000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenamedhnetsdk.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660208041.0000000000409000.00000004.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameMP2L2Dec.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002F4F000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenamedll_svac_dec.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe, 00000000.00000002.1660658529.0000000002BCF000.00000004.00000020.00020000.00000000.sdmp | Binary or memory string: OriginalFilenamenpmedia.dll vs SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe |
Source: SecuriteInfo.com.Trojan.MulDrop13.41595.16600.22629.exe | Static PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE |
Source: DHSurveillanceDll.dll.0.dr | Binary string: Protocol Not SupportProtocolDisablePlayBackShowFluxIndexPosCustomWndPostotalWndNumerdetailEnableLargePicAdjOldDigest%s:%s:%sUserNoteRandomRealmEncryptionMinSectionSectionNumParam IllegalPicturePathShowTypeDirectionStatReportTypeMakeReportBeginTimeCreateHeatMapEnableHeatMapOprationbTmpFileAuthenticationpasswordusernameURLFileExtLoginIDSETGETFileSizeFileTypeFAILEDDOWNLOADSUCCESSDownloadPathDataErrorPLAYHttpDownloadTaskIDSTOPDOWNLOADSETDATACalibrationOperation failed!SetCoordProperty missing color or coordination!coordinationColorSetCoordPropertyGetClibrationAndExpect return %sGetIPCCalibrationVauleenableEnableCalibrationCBFixedFrameenableDrawdetailinfoEnableCalibrationDrawService ErrorD:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\ProtocolWithWeb.cppOpration format is errorWANkeyArrayfuncNameIVSTypemodeShowMaxRowCountsFileModeFileBufferFunNameSheetNameIndexsStatusnSensorIdmSensorIddeleteaddOperationDestIndexDecSourceIndexPolicyRealPlayTypeParam Illegal: 'Operation': Operation not supportParam Illegal: 'TaskId'StopByTimeTaskIdStopByFileParam Illegal: 'Channel', 'StreamType', 'StartTime' or 'EndTime'Param Illegal: 'DownloadInfo'DownloadInfoParam Illegal: 'SavePath' or 'Ext'ExtSavePathDownloadByTimeDownloadByFileParam Illegal: 'Operation'Directory not exist, and create failed!Too much task is running, start task failed!ReSetVideoWndTextTextColorSetVideoWndTextColorTextSetVideoWndTextReSetCanSelCanSelSetWinCanSelChannelIDDayMonthYearFilterfile count out of size, allow max count is 200PersonSNNumstrDecryptTypeExcelPathfromatCLIENT_QueryDevState--DH_DEVSTATE_BACKUP_DEV_INFO, ErrorCode:%dD:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\remoteBackupManager.cppCLIENT_QueryDevState--DH_DEVSTATE_BACKUP_DEV, ErrorCode:%dCLIENT_QueryDevState(DH_DEVSTATE_BACKUP_DEV |
Source: DHSurveillanceDll.dll.0.dr | Binary string: %04ld%02ld%02ld%02ld%02ld%02ld%04ld%02ld%02ld%02ld%02ld%02ld-%02d-%d-%d-%d-%d-%d%04ld-%02ld-%02ld %02ld:%02ld:%02ldTimeSection0kbps%ldKbps DDMMYYYYDisk25D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\Trans\Parse.cppchmod(%s):[%s]image/gifimage/jpegimage/pngimage/tiff image/bmp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\Trans\IvsPlayDraw.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\ProtocolWithWeb.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\Trans\videoMode.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\DownloadAviRecordModule.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\SyncMultiNetPlaybackAdapter.cppOnEndNetPlayEventInform -->StardChnlID:%d , playChnlID:%d , nFileIndex:%d Get Time Failed! |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\Trans\downloadRecordManage.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\SyncMultiNetPlaybackAdapter.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\Trans\transaction.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: ItemUnit PriceOtyAmountD:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\Trans\IvsPlayDraw.cppivsDrawer last error :%d /n%cEncryptTypeFileNameRetEncryptInfoSuccessRetPSWDInfoDefaultEventsSaveNameFilePathDateFormatEndoffsetBeforeoffsetUseOffsetPlayerIDRecordInfoParams%.0f%s %d%s %u%s~%s %sExitedSubtotalEnteredSubtotalinfoExitedTotalEnteredTotalShowNumberYCountMaxData |
Source: DHSurveillanceDll.dll.0.dr | Binary string: VideoAnalysepermissionIVSDrawerStreamConvertordhplaydeviceportdeviceipDeviceDisConnectedAutoDeviceConnectedPointWinIndexMousePositionc:\play_Restrict.bmpADTCDJF_1CDJFBydemesusernameEncryptWatchNetD:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\Trans\transaction.cppGetUserInfo Error, ErrorID:%d%s_%02dActivemouseAndKeyActiveEventHigh PicQualityLow PicQualityFluency Level3Fluency Level2Fluency Level1Real Level1Real Level2Real Level3Default LevelrCTransaction::ReadFile strResult is empty m_strSheetName:%s /nCTransaction::ReadFile m_strSheetName:%s /n.mp4.asf.davIsFullScreenPicWndIndexPicWndModePicWndNumVideoWndIndexVideoWndModeVideoWndNumWndState\*%s%.4d%.2d%.2d%.2d%.2d%.2d[%d]_%d%s%s.%s_P_C_R_A_M%d*%dmpegvideoStartClusterCurPlayTimeCurPlayFileInfoC:\RecordDownload\C:\PictureDownload\USERPROFILEInsufficient resourcesfunction failedCompression playback failedTalkFailedDisableRealplayAudioAuthAudioChannelChooseencryptionopr_ocx.Capture Picture faild!com_msg.netovertimecom_error.FailedTalkToIpcBroadcastopr_ocx.micSourceopr_ocx.Close Channel Audio first!com_msg.fish.notfishstreamconf_ivs.fish.fisheyecom_msg.multiscreen_nosupportfisheye_nosupportopr_ocx.No Rightopr_ocx.Stop talking first!opr_ocx.Insufficient resourcesopr_ocx.function failedopr_ocx.Compression playback failedSubCodeDescriptionWinIDWebPluginInfo%s\%s[%d]%s][%s\*.*CLIENT_TransmitInfoForWeb errorCode = %d |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\remoteBackupManager.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: D:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\dvrTransaction.cpp |
Source: DHSurveillanceDll.dll.0.dr | Binary string: %2d:%2d:%2dDVRPlugin-InfoD:\jk_win7\workspace\NVR_DH3.1373_X86_64_Windows\tmp_build_dir\webplugin\Device\Src\DVR\dvrTransaction.cppChannelTotal:%dCloseVideoAudio9C9C9C%02d%02d%02d%02d|%s: %s %sPlayingX%sPause168421(1/2)(1/4)(1/8)(1/16)opentotalTimeplayTimeReturnLocalState%s_%d_%s%s_%s_%sPLAY_Preview%s_%d_%s_%sS%d0Kbps%d-%d-%d %swinIDstreamtypestatechannelRealVideoChannelStateNetwork Unstable, Please Waiting...QuickPlayChannelStateMultiScreeninfoMultiScreenfisheyeinfoFisheyedirectionnormalbackwardsNetPlayState%s: %s %dWan ReConnectRealVideo Failed: ECode=%dWan ConnectRealVideo: ECode=%dCLIENT_MultiRealPlay Failed: ECode=%dfileListRecTypeSizeEndTimeStartTime%04u%02u%02u%02u%02u%02uStreamTypeChannelClusterDriveNoFileInfofileIndexDownloadByFilePosDownloadByTimePoserrorInfohttpDownloadTaskIDtotalDataSizedownloadDataSizeDownloadSizeProcessfailednmutotalcountdownloadcountBatchDownloadProcesserroridstreamidfailedDownLoadBigFilesPosRemoteBackupPosFileSearchEndZoomInstartDirectionisReversewinHightwinWidthbottomrightlefttopselRegionPTZPositionSnapshotRecordIsPlayBackCanSnapshotFisheyeCtrlfluencyqualityverticalptzReturnWindInfoisSwitchwinstatustotalWaterMarkPostimeerrTypeerrNowaterMarkNowaterMarkWaterMarkInfo%s%s_ch%d_%s_%.4d%.2d%.2d%.2d%.2d%.2d_%.4d%.2d%.2d%.2d%.2d%.2d%s.%s%s%s_ch%d_%s_%.4d%.2d%.2d%.2d%.2d%.2d_%.4d%.2d%.2d%.2d%.2d%.2d%s_%s.%s%s%s_ch%d_%s_%.4d%.2d%.2d%.2d%.2d%.2d_%.4d%.2d%.2d%.2d%.2d%.2d%s_%d.%s%s%s_ch%d_%s_%.4d%.2d%.2d%.2d%.2d%.2d_%.4d%.2d%.2d%.2d%.2d%.2d%s_%s_%d.%s_*.%.4d%.2d%.2d%.2d%.2d%.2dch%d_%s_%svehicleMachineCAM %d%sMDVR_ID-%s_CH%d_B_%.4d-%.2d-%.2d_%.2d-%.2d-%.2d_E_%.4d-%.2d-%.2d_%.2d-%.2d-%.2d_%s_%s.%sGS2S1N%s%s_ch%d_%.4d%.2d%.2d%.2d%.2d%.2d_%.4d%.2d%.2d%.2d%.2d%.2d_%d%2d%d.%sIJGroupHCMARFF%saudio_%s_ch%d_%s_%.4d%.2d%.2d%.2d%.2d%.2d_%.4d%.2d%.2d%.2d%.2d%.2d.%sextra3extra2extra1main%s%s_%.4d%.2d%.2d%.2d%.2d%.2d_%.4d%.2d%.2d%.2d%.2d%.2d.%spreTorus_Audio%s%s_ch%d_jpg_%.4d%.2d%.2d%.2d%.2d%.2d%s.%s_%dVehicle_Grouparg%darg3arg2arg1arg0parammaxNumberendTimestartTimerecTypestreamType%s\%s_ch%d_%s_%04lu%02lu%02lu%02lu%02lu%02lu.%sextra%d%s%s_preview_chn_%04lu%02lu%02lu_%02lu%02lu%02lu.%sIpv6_\Preview Channel\ChannelsNumberMachineTypeIsMultiPreviewShowLocalChannelsNumberMachineNameszResolutionnBitRatenFPSTypechannelnum%s %sLockindexEnableMasterSlaveTrackerOperationMasterSlaveTrackerDeviceIDRecordRestrictMotionDetectYpointNotifyCalibrationValueendtimestarttimeSynopsisClickInfo%4d/%.2d/%.2d %.2d:%.2d:%.2dpicStrOnGetPictureCr |