DvDupdate.dll

Description

(Kaspersky) This is a service DLL, but with all the same exports you would expect from a COM object. Basically, it’s a payload loader.

The whole code is obfuscated with different Windows API calls and loops. It wasn’t designed to confuse a reverse engineer or to make reverse engineering harder, but to bypass some simple AV emulation engines.

Names

Name
DvDupdate.dll

Type

Loader

Information

https://securelist.com/titanium-the-platinum-group-strikes-again/94961/

Other Information

Uuid

385daa4a-b683-4d5f-b74b-fc7890615a3a

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

DvDupdate.dll

DvDupdate.dll

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks