pitchmonster32[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

pitchmonster32.zip
Size

3.0MB
MD5

bc0b1193a418003e09ad4ade284d3922
SHA1

c1b66facc755a4191851e3c8c1854994357970ba
SHA256

1055f53616d7ca7772d5f962a56bfbd04699bdd1bd04d7ae459402b5541c332e
SHA512

33d198b441583084771c495c74e18dbca9f643c7ef91b836316d795f878e7c710ae11ad541a704404f3d12d8addf2ab528032f1586056943eb85172984170d30
SSDEEP

49152:e0YLq943S/QOjhwnlVusjrFwtuZDsyomlLYSEKD2fiW59a6EKoAn6Xc7XdxlOdZ:BYLqi3wQj7rOu5fsKDXW5MY6Xc7blu

Score

1^/10

Malware Config

Signatures

Files

pitchmonster32.zip
.zip
Download/pitchmonster32.dll
.dll windows x86

249da8b44fb877be26af2b14ad982dda

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileInformationByHandle
FormatMessageW
GetLastError
GetFileAttributesExW
OutputDebugStringW
SetEvent
GetLogicalProcessorInformation
TerminateThread
QueryPerformanceFrequency
DeleteFileW
CloseHandle
GetNativeSystemInfo
LoadLibraryW
GetCurrentDirectoryW
GetOverlappedResult
GetProcAddress
ReplaceFileW
DeleteCriticalSection
ExitProcess
GetModuleHandleW
FreeLibrary
CreateFileMappingW
MapViewOfFile
QueryPerformanceCounter
MoveFileW
GetDriveTypeW
IsDebuggerPresent
ConnectNamedPipe
SetUnhandledExceptionFilter
FlushFileBuffers
GetCommandLineW
AttachConsole
GlobalSize
LoadLibraryA
GlobalAlloc
GlobalLock
GetCurrentProcessId
GlobalUnlock
CancelIoEx
ReadDirectoryChangesW
InitializeCriticalSectionEx
RaiseException
DecodePointer
ResetEvent
GetPriorityClass
SetStdHandle
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
FindFirstFileExW
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleCP
GetOEMCP
GetACP
IsValidCodePage
GetFileType
GetStdHandle
CreateEventW
UnmapViewOfFile
IsValidLocale
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
FreeLibraryAndExitThread
ExitThread
CreateThread
GetTimeZoneInformation
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
InterlockedFlushSList
RtlUnwind
InitializeSListHead
GetStartupInfoW
IsProcessorFeaturePresent
UnhandledExceptionFilter
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetStringTypeW
LCMapStringEx
MultiByteToWideChar
EncodePointer
GetSystemTimeAsFileTime
WideCharToMultiByte
SleepConditionVariableSRW
SleepConditionVariableCS
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
Sleep
GetLogicalDriveStringsW
RtlCaptureStackBackTrace
DisconnectNamedPipe
EnumSystemLocalesW
GetSystemDirectoryW
ReleaseMutex
GetFileAttributesW
CreateFileW
WaitForSingleObject
GetLocaleInfoW
FindClose
CreateMutexW
GetTempPathW
SetEndOfFile
SetFilePointer
InitializeCriticalSection
LeaveCriticalSection
SetThreadPriority
WaitForMultipleObjects
GetModuleFileNameW
RemoveDirectoryW
TerminateProcess
GetModuleHandleExW
WriteFile
GetCurrentProcess
FindNextFileW
EnterCriticalSection
SetPriorityClass
FindFirstFileW
GetCurrentThreadId
GetModuleHandleA
CancelIo
GetVolumeInformationW
TryEnterCriticalSection
ReadFile
SetThreadAffinityMask
CreateDirectoryW
GetThreadPriority
GetCurrentThread
GetUserDefaultLCID
WriteConsoleW

user32

AttachThreadInput
GetWindowThreadProcessId
ReleaseDC
GetDC
GetWindowTextW
SetWindowLongW
TranslateMessage
GetWindowRect
SetWindowPos
PostMessageA
CallNextHookEx
GetSystemMetrics
GetClassNameA
SetWindowsHookExA
UnhookWindowsHookEx
GetAncestor
SetFocus
EnumWindows
PeekMessageW
MoveWindow
RegisterClassExW
UnregisterClassW
CreateWindowExW
DestroyWindow
GetFocus
SendMessageTimeoutW
PostMessageW
DefWindowProcW
GetMessageW
GetWindowLongW
EndPaint
BeginPaint
GetCursorPos
SetCursorPos
InvalidateRect
SetForegroundWindow
ReleaseCapture
GetParent
EnableMenuItem
GetDesktopWindow
ShowCaret
DrawIconEx
UpdateLayeredWindow
GetClientRect
SetCursor
ToUnicode
SetClipboardData
SetWindowsHookExW
SetCapture
DestroyCaret
LoadCursorW
FindWindowW
GetClipboardData
SetLayeredWindowAttributes
GetMessageTime
GetForegroundWindow
TrackMouseEvent
MapWindowPoints
CreateCaret
IsChild
EmptyClipboard
CloseClipboard
CreateIconIndirect
GetMonitorInfoW
CallWindowProcW
DispatchMessageW
GetWindowInfo
DestroyIcon
RedrawWindow
GetCapture
OpenClipboard
GetAsyncKeyState
IsWindow
ShowWindow
GetActiveWindow
SetCaretPos
GetKeyboardState
DestroyCursor
GetWindowPlacement
WindowFromPoint
MessageBeep
SetWindowTextW
EndDialog
SendMessageW
GetIconInfo
EnumDisplayMonitors
EnumChildWindows
MessageBoxW
IsWindowVisible
FindWindowExW
MapVirtualKeyW
GetMessagePos
GetUpdateRgn
GetMessageExtraInfo
GetSystemMenu

gdi32

StretchDIBits
CreateRectRgnIndirect
CreateRectRgn
GetRegionData
GetObjectW
ExcludeClipRect
RestoreDC
CombineRgn
AddFontMemResourceEx
SelectObject
CreateCompatibleDC
EnumFontFamiliesExW
GetDeviceCaps
GetTextMetricsW
DeleteDC
SetMapperFlags
GetGlyphIndicesW
GetGlyphOutlineW
DeleteObject
RemoveFontMemResourceEx
SetMapMode
CreateFontIndirectW
GetOutlineTextMetricsW
CreateDIBSection
GetKerningPairsW
SaveDC
CreateBitmap

comdlg32

GetSaveFileNameW
GetOpenFileNameW

shell32

ExtractAssociatedIconW
SHBrowseForFolderW
SHGetKnownFolderPath
SHCreateShellItem
SHGetPathFromIDListW
Shell_NotifyIconW
ShellExecuteW
DragQueryFileW
SHGetMalloc
SHGetSpecialFolderPathW
SHFileOperationW
SHParseDisplayName

ole32

PropVariantClear
OleCreate
OleSetContainedObject
RevokeDragDrop
CoInitialize
RegisterDragDrop
DoDragDrop
CoTaskMemFree
CoUninitialize
CoTaskMemAlloc
OleInitialize
OleUninitialize
CoCreateInstance
CoInitializeEx

wininet

InternetSetFilePointer
InternetReadFile
FtpOpenFileW
InternetConnectW
InternetCloseHandle
HttpSendRequestExW
HttpEndRequestW
InternetCrackUrlW
InternetOpenW
InternetWriteFile
HttpOpenRequestW
InternetSetOptionW
HttpQueryInfoW

ws2_32

inet_ntoa
recv
getsockopt
htonl
htons
freeaddrinfo
sendto
ioctlsocket
setsockopt
send
inet_addr
WSAStartup
getaddrinfo
select
bind
accept
__WSAFDIsSet
closesocket

shlwapi

ord172
PathStripToRootW

winmm

midiInUnprepareHeader
midiInOpen
timeBeginPeriod
timeGetTime
timeKillEvent
midiOutGetDevCapsW
midiOutPrepareHeader
midiOutOpen
midiInReset
midiInPrepareHeader
midiOutUnprepareHeader
midiInGetDevCapsW
midiInClose
midiInStart
midiInAddBuffer
midiOutMessage
midiInGetNumDevs
midiOutShortMsg
midiOutGetNumDevs
midiOutLongMsg
midiOutClose
midiInStop
midiInMessage

dbghelp

SymInitialize
SymFromAddr
SymGetModuleInfo64

imm32

ImmSetCandidateWindow
ImmGetCompositionStringW
ImmReleaseContext
ImmGetContext
ImmNotifyIME

Exports

Exports

VSTPluginMain
main

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 158KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

249da8b44fb877be26af2b14ad982dda

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

wininet

ws2_32

shlwapi

winmm

dbghelp

imm32

Exports

Exports

Sections

.text Size: 3.2MB - Virtual size: 3.2MB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: 101KB - Virtual size: 107KB

_RDATA Size: 158KB - Virtual size: 157KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 173KB - Virtual size: 172KB

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: 101KB - Virtual size: 107KB

_RDATA
Size: 158KB - Virtual size: 157KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 173KB - Virtual size: 172KB