a089021c756a9d5d27b26256f47be38df0129a6d5bd8f631c4c896a7b482c0fa

Sharing

Copy URL

Twitter E-mail

General

Target

a089021c756a9d5d27b26256f47be38df0129a6d5bd8f631c4c896a7b482c0fa
Size

15.4MB
MD5

b5d9a346a0b9619efa44640a47f45092
SHA1

40277f800eaa76e5dac4efccb3523a733b07e590
SHA256

a089021c756a9d5d27b26256f47be38df0129a6d5bd8f631c4c896a7b482c0fa
SHA512

d17b0c56f8c8d62b3ed5a7b25f9d951a9c130a006ac474f1e2deda73020c2b7b8eeaae53adfef4e62f438318980a78b682b77a69769ca0f007df097bd213834a
SSDEEP

393216:WEi3F4hunX1kTCFoZxMpabDMlRpjJLJtqEV7ZdqPh4NGK:SFcLga0RvLJVjq5it

Score

3^/10

Malware Config

Signatures

Unsigned PE 9 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/PLWMidiMap.cpl
unpack001/Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/bass.dll
unpack001/Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/basswasapi.dll
unpack001/Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vsthost32.exe
unpack001/Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vsthost64.exe
unpack001/Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vstmididrv.dll
unpack001/Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vstmididrvcfg.exe
unpack001/Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/MidRadio.DLL
unpack001/Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/syxg50.DLL

Files

a089021c756a9d5d27b26256f47be38df0129a6d5bd8f631c4c896a7b482c0fa
.zip
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/desktop.ini
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv の登録バッチ.bat
.bat .vbs
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv の登録バッチ1.bat
.bat .vbs
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/PLWMidiMap.cpl
.dll windows x86

71e423f81d4b8800f23c3a4b002c168d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

kernel32

CloseHandle
CreateFileA
ExitProcess
FormatMessageA
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetCurrentThreadId
GetEnvironmentStrings
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
LoadLibraryA
LocalFree
RaiseException
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WriteFile

user32

DialogBoxParamA
EnableWindow
EndDialog
EnumThreadWindows
GetDlgItem
LoadIconA
LoadStringA
MessageBoxA
SendMessageA
wsprintfA

winmm

midiOutGetDevCapsA
midiOutGetNumDevs

Exports

Exports

CPlApplet
___CPPdebugHook

Sections

.text
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/Putzlowitschs MIDIMapper.lnk
.lnk
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/bass.dll
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

BASS_Apply3D
BASS_ChannelBytes2Seconds
BASS_ChannelFlags
BASS_ChannelGet3DAttributes
BASS_ChannelGet3DPosition
BASS_ChannelGetAttribute
BASS_ChannelGetAttributeEx
BASS_ChannelGetData
BASS_ChannelGetDevice
BASS_ChannelGetInfo
BASS_ChannelGetLength
BASS_ChannelGetLevel
BASS_ChannelGetLevelEx
BASS_ChannelGetPosition
BASS_ChannelGetTags
BASS_ChannelIsActive
BASS_ChannelIsSliding
BASS_ChannelLock
BASS_ChannelPause
BASS_ChannelPlay
BASS_ChannelRemoveDSP
BASS_ChannelRemoveFX
BASS_ChannelRemoveLink
BASS_ChannelRemoveSync
BASS_ChannelSeconds2Bytes
BASS_ChannelSet3DAttributes
BASS_ChannelSet3DPosition
BASS_ChannelSetAttribute
BASS_ChannelSetAttributeEx
BASS_ChannelSetDSP
BASS_ChannelSetDevice
BASS_ChannelSetFX
BASS_ChannelSetLink
BASS_ChannelSetPosition
BASS_ChannelSetSync
BASS_ChannelSlideAttribute
BASS_ChannelStop
BASS_ChannelUpdate
BASS_ErrorGetCode
BASS_FXGetParameters
BASS_FXReset
BASS_FXSetParameters
BASS_FXSetPriority
BASS_Free
BASS_Get3DFactors
BASS_Get3DPosition
BASS_GetCPU
BASS_GetConfig
BASS_GetConfigPtr
BASS_GetDSoundObject
BASS_GetDevice
BASS_GetDeviceInfo
BASS_GetEAXParameters
BASS_GetInfo
BASS_GetVersion
BASS_GetVolume
BASS_Init
BASS_MusicFree
BASS_MusicLoad
BASS_Pause
BASS_PluginFree
BASS_PluginGetInfo
BASS_PluginLoad
BASS_RecordFree
BASS_RecordGetDevice
BASS_RecordGetDeviceInfo
BASS_RecordGetInfo
BASS_RecordGetInput
BASS_RecordGetInputName
BASS_RecordInit
BASS_RecordSetDevice
BASS_RecordSetInput
BASS_RecordStart
BASS_SampleCreate
BASS_SampleFree
BASS_SampleGetChannel
BASS_SampleGetChannels
BASS_SampleGetData
BASS_SampleGetInfo
BASS_SampleLoad
BASS_SampleSetData
BASS_SampleSetInfo
BASS_SampleStop
BASS_Set3DFactors
BASS_Set3DPosition
BASS_SetConfig
BASS_SetConfigPtr
BASS_SetDevice
BASS_SetEAXParameters
BASS_SetVolume
BASS_Start
BASS_Stop
BASS_StreamCreate
BASS_StreamCreateFile
BASS_StreamCreateFileUser
BASS_StreamCreateURL
BASS_StreamFree
BASS_StreamGetFilePosition
BASS_StreamPutData
BASS_StreamPutFileData
BASS_Update
_

Sections

Size: 116KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/basswasapi.dll
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

BASS_WASAPI_CheckFormat
BASS_WASAPI_Free
BASS_WASAPI_GetCPU
BASS_WASAPI_GetData
BASS_WASAPI_GetDevice
BASS_WASAPI_GetDeviceInfo
BASS_WASAPI_GetDeviceLevel
BASS_WASAPI_GetInfo
BASS_WASAPI_GetLevel
BASS_WASAPI_GetLevelEx
BASS_WASAPI_GetMute
BASS_WASAPI_GetVersion
BASS_WASAPI_GetVolume
BASS_WASAPI_Init
BASS_WASAPI_IsStarted
BASS_WASAPI_Lock
BASS_WASAPI_PutData
BASS_WASAPI_SetDevice
BASS_WASAPI_SetMute
BASS_WASAPI_SetNotify
BASS_WASAPI_SetVolume
BASS_WASAPI_Start
BASS_WASAPI_Stop

Sections

Size: 10KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vsthost32.exe
.exe windows x86

02cc2252cae8c6763704dc7df14abc06

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

WriteFile
ReadFile
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
GetCommandLineW
CreateFileW
GetStdHandle
SetStdHandle
SetUnhandledExceptionFilter
LoadLibraryW
GetProcAddress
FreeLibrary
LocalFree
CloseHandle
WriteConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
FlushFileBuffers
HeapReAlloc
HeapSize
GetProcessHeap
GetFileType
LCMapStringW
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
GetModuleHandleW
RtlUnwind
RaiseException
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
WideCharToMultiByte
GetModuleFileNameW
MultiByteToWideChar
ExitProcess
GetModuleHandleExW
GetACP
HeapFree
GetStringTypeW
HeapAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
DecodePointer

user32

SetWindowLongW
SetWindowTextW
GetDesktopWindow
DialogBoxIndirectParamW
EndDialog
KillTimer
SetWindowPos
GetWindowLongW
AdjustWindowRectEx
SetRect
SetTimer

shell32

CommandLineToArgvW

ole32

CoUninitialize
CoInitialize

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vsthost64.exe
.exe windows x64

870896dc7acc0993b87fb3592f286906

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

comctl32

InitCommonControlsEx

kernel32

WriteFile
ReadFile
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
GetCommandLineW
CreateFileW
GetStdHandle
SetStdHandle
SetUnhandledExceptionFilter
LoadLibraryW
GetProcAddress
FreeLibrary
LocalFree
CloseHandle
WriteConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
FlushFileBuffers
HeapReAlloc
HeapSize
GetProcessHeap
GetFileType
LCMapStringW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
GetModuleHandleW
RtlUnwindEx
RtlPcToFileHeader
RaiseException
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
WideCharToMultiByte
GetModuleFileNameW
MultiByteToWideChar
ExitProcess
GetModuleHandleExW
GetACP
HeapFree
GetStringTypeW
HeapAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW

user32

SetWindowLongPtrW
SetWindowTextW
GetDesktopWindow
DialogBoxIndirectParamW
EndDialog
KillTimer
GetWindowLongPtrW
SetWindowPos
GetWindowLongW
AdjustWindowRectEx
SetRect
SetTimer

shell32

CommandLineToArgvW

ole32

CoUninitialize
CoInitialize

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vstmididrv.dll
.dll windows x86

09158aa3c7c31d6e6bc21c51e16f22a5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
DuplicateHandle
GetLastError
SetLastError
CreateNamedPipeW
GetOverlappedResult
CancelIo
ResetEvent
WaitForSingleObject
CreateEventW
GetCurrentProcess
TerminateProcess
CreateProcessW
GetModuleFileNameW
OutputDebugStringW
WriteFile
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryW
lstrcatW
DisableThreadLibraryCalls
SetEndOfFile
HeapReAlloc
HeapSize
GetStringTypeW
GetConsoleCP
FlushFileBuffers
SetStdHandle
ReadFile
CreateFileW
InitializeCriticalSection
GetStdHandle
GetProcessHeap
LCMapStringW
InitializeCriticalSectionAndSpinCount
SetEvent
WaitForSingleObjectEx
GetModuleHandleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RaiseException
RtlUnwind
InterlockedFlushSList
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
GetFileType
GetModuleHandleExW
WriteConsoleW
ExitProcess
HeapAlloc
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
DecodePointer

user32

MsgWaitForMultipleObjects
PeekMessageW
DispatchMessageW

shlwapi

PathRemoveFileSpecW

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW

winmm

DriverCallback

ole32

CoCreateGuid
CoUninitialize
CoInitialize

Exports

Exports

DriverProc
modMessage

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vstmididrvcfg.exe
.exe windows x86

ea0513e47a59bd54f8f6040facdb5280

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiOutGetDevCapsW
midiOutGetNumDevs

kernel32

GetModuleFileNameW
CreateProcessW
CreateFileW
CreateNamedPipeW
CancelIo
SetPriorityClass
GetPriorityClass
DecodePointer
InterlockedIncrement
InterlockedDecrement
FreeLibrary
GetProcAddress
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
RaiseException
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LoadResource
SizeofResource
lstrcmpiW
lstrcpyW
LoadLibraryExW
GetModuleHandleW
FindResourceW
GetVersionExW
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileW
FindClose
GetConsoleCP
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetFileType
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetACP
GetModuleHandleExW
ExitProcess
RtlUnwind
LoadLibraryExA
VirtualFree
VirtualAlloc
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
OutputDebugStringW
InitializeSListHead
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
SetEndOfFile
DuplicateHandle
CloseHandle
ReadFile
CreateEventW
WriteFile
GetStdHandle
WaitForSingleObject
ResetEvent
GetOverlappedResult
SetLastError
GetLastError
GetThreadPriority
SetThreadPriority
GetCurrentThread
TerminateProcess
GetCurrentProcess
SetStdHandle
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
SetEvent
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
WriteConsoleW
FindFirstFileExW
WideCharToMultiByte
EncodePointer
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime

user32

DispatchMessageW
PeekMessageW
MsgWaitForMultipleObjects
GetMessageW
TranslateMessage
SendMessageW
DefWindowProcW
PostQuitMessage
GetAncestor
GetMonitorInfoW
MonitorFromWindow
IsDialogMessageW
LoadImageW
LoadCursorW
GetWindow
SetParent
GetParent
SetWindowLongW
GetWindowLongW
GetSysColorBrush
MapWindowPoints
MessageBoxW
GetWindowRect
GetClientRect
SetWindowTextW
GetSystemMetrics
EnableWindow
GetFocus
GetActiveWindow
SetFocus
CharNextW
GetDlgCtrlID
GetNextDlgTabItem
GetDlgItem
CreateDialogParamW
SetWindowPos
ShowWindow
DestroyWindow
IsChild
CreateWindowExW
GetClassInfoExW
RegisterClassExW
UnregisterClassW
CallWindowProcW

gdi32

FillRgn
DeleteObject
CreateRectRgnIndirect
CombineRgn

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey

ole32

CoTaskMemAlloc
CoUninitialize
CoTaskMemFree
CoInitialize
CoCreateInstance
CoCreateGuid
CoTaskMemRealloc

oleaut32

VarUI4FromStr

comctl32

InitCommonControlsEx

Sections

.text
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv/vstmididrvcfg.lnk
.lnk
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv_32/Putzlowitschs MIDIMapper.lnk
.lnk
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv_32/vstmididrv の登録バッチ.bat
.bat .vbs
Win(x32_x64)_S-YXG50/1.登録用/_/__vstmididrv/vstmididrv_32/vstmididrvcfg.lnk
.lnk
Win(x32_x64)_S-YXG50/1.登録用/vstmididrv の登録バッチ.bat
Win(x32_x64)_S-YXG50/2.削除用/vst_del/del.bat
.bat .vbs
Win(x32_x64)_S-YXG50/2.削除用/vst_del/or/vstmididrv の削除バッチ.bat
.bat .vbs
Win(x32_x64)_S-YXG50/2.削除用/vst_del/vstmididrv の削除バッチ.bat
.bat .vbs
Win(x32_x64)_S-YXG50/2.削除用/vstmididrv の削除バッチ.bat
Win(x32_x64)_S-YXG50/A.ico
Win(x32_x64)_S-YXG50/YAMAHA-01.ico
Win(x32_x64)_S-YXG50/desktop.ini
Win(x32_x64)_S-YXG50/読んでね.txt
Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/B.ico
Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/MidRadio.DLL
.dll windows x86

e2376fb77f3ab69c18c08f03a16de905

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileSize
ReadFile
ExitProcess
GetModuleFileNameA
GetVersion
CreateFileA
CloseHandle
IsDebuggerPresent
WriteFile
DisableThreadLibraryCalls
RtlUnwind
GetCommandLineA
GetProcAddress
GetModuleHandleA
HeapFree
RaiseException
HeapAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
InterlockedDecrement
InterlockedIncrement
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetFilePointer
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
LoadLibraryA
SetStdHandle
FlushFileBuffers

advapi32

RegOpenKeyExA
RegCloseKey

Exports

Exports

main

Sections

.text
Size: 344KB - Virtual size: 343KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/YAMAHA-02.ico
Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/desktop.ini
Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/sxgbnw6l.tbl
Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/sxgdat6l.tbl
Win(x32_x64)_S-YXG50/！-YAMAHA-Vst+/syxg50.DLL
.dll windows x86

4dc2a9a0994f50acaf3824ae7b60f7ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetPrivateProfileStringA
lstrlenA
SizeofResource
GetVersion
ExitProcess
WideCharToMultiByte
GetCurrentProcess
GetFileAttributesA
FlushFileBuffers
SetStdHandle
FreeLibrary
WriteFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetFilePointer
InterlockedIncrement
InterlockedDecrement
GetEnvironmentStringsW
GetEnvironmentStrings
GetModuleFileNameA
lstrcpyA
lstrcatA
CreateProcessA
GetPrivateProfileIntA
CreateFileA
GetFileSize
ReadFile
CloseHandle
FreeEnvironmentStringsW
FreeEnvironmentStringsA
DisableThreadLibraryCalls
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
RtlUnwind
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
GetModuleHandleA
RaiseException
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
FindResourceA
LoadResource
LockResource

user32

LoadCursorA
GetParent
SendMessageA
GetDlgItem
SetWindowTextA
wsprintfA
UnregisterClassA
LoadBitmapA
RegisterClassA
CreateWindowExA
BeginPaint
EndPaint
DefWindowProcA
ReleaseCapture
SetCapture
GetDC
ReleaseDC
ShowWindow
GetDesktopWindow
CreateDialogParamA
GetWindowRect
DestroyWindow
SetWindowLongA
GetWindowLongA
LoadStringA
CheckDlgButton

gdi32

BitBlt
CreateCompatibleDC
SelectObject
DeleteDC
DeleteObject

winmm

timeGetTime

comctl32

PropertySheetA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

Exports

Exports

main

Sections

.text
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

71e423f81d4b8800f23c3a4b002c168d

Headers

File Characteristics

Imports

advapi32

kernel32

user32

winmm

Exports

Exports

Sections

.text Size: 33KB - Virtual size: 36KB

.data Size: 10KB - Virtual size: 20KB

.tls Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 7KB - Virtual size: 8KB

.reloc Size: 2KB - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 116KB - Virtual size: 320KB

.rsrc Size: 1024B - Virtual size: 4KB

Size: - Virtual size: 8KB

petite Size: 3KB - Virtual size: 3KB

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 10KB - Virtual size: 24KB

.rsrc Size: 1024B - Virtual size: 4KB

Size: - Virtual size: 4KB

petite Size: 1KB - Virtual size: 1KB

02cc2252cae8c6763704dc7df14abc06

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

shell32

ole32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 22KB - Virtual size: 22KB

.reloc Size: 4KB - Virtual size: 3KB

870896dc7acc0993b87fb3592f286906

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

shell32

ole32

Sections

.text Size: 51KB - Virtual size: 50KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 2KB - Virtual size: 7KB

.pdata Size: 3KB - Virtual size: 3KB

.rsrc Size: 22KB - Virtual size: 22KB

.reloc Size: 2KB - Virtual size: 1KB

09158aa3c7c31d6e6bc21c51e16f22a5

Headers

DLL Characteristics

File Characteristics

.text
Size: 33KB - Virtual size: 36KB

.data
Size: 10KB - Virtual size: 20KB

.tls
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 7KB - Virtual size: 8KB

.reloc
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB

petite
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 4KB

petite
Size: 1KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 22KB - Virtual size: 22KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 51KB - Virtual size: 50KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 2KB - Virtual size: 7KB

.pdata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 22KB - Virtual size: 22KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 30KB - Virtual size: 30KB

.data
Size: 2KB - Virtual size: 17KB

.reloc
Size: 5KB - Virtual size: 5KB

.text
Size: 166KB - Virtual size: 166KB

.rdata
Size: 70KB - Virtual size: 69KB

.data
Size: 6KB - Virtual size: 9KB

.rsrc
Size: 49KB - Virtual size: 48KB

.reloc
Size: 11KB - Virtual size: 10KB

.text
Size: 344KB - Virtual size: 343KB

.rdata
Size: 272KB - Virtual size: 271KB

.data
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 256KB - Virtual size: 254KB

.reloc
Size: 24KB - Virtual size: 22KB

.text
Size: 252KB - Virtual size: 248KB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 20KB - Virtual size: 23KB

.reloc
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 4.5MB - Virtual size: 4.5MB