6aeafc743cfe3fb7635fc2d06b53d5511c63802926d3cd8aff28deb7925a9c98

Sharing

Copy URL

Twitter E-mail

General

Target

6aeafc743cfe3fb7635fc2d06b53d5511c63802926d3cd8aff28deb7925a9c98
Size

9.4MB
MD5

7bfc1f18802f2dcb42af3d2f3fe8d05f
SHA1

c63ddc5310e9d01c4d1b7b857153bb4730e1e58f
SHA256

6aeafc743cfe3fb7635fc2d06b53d5511c63802926d3cd8aff28deb7925a9c98
SHA512

beccb4728fc07804b77c3a7ea570abcfaaa6d58e9554d8387c26c59bb8621104f188d9b7e8919f04fb9a503fed3a9d0f867296af86780d9d1496d27eb8c4a5fe
SSDEEP

196608:fQGCfTJXoYrQ/AYojD390bYVHl02jseof4CAgonTqpm2KB1Zb98PCQwGubK9CG8:T0Q/ODvi2jseof4CAgonTqpm2KB1Zb9r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6aeafc743cfe3fb7635fc2d06b53d5511c63802926d3cd8aff28deb7925a9c98

Files

6aeafc743cfe3fb7635fc2d06b53d5511c63802926d3cd8aff28deb7925a9c98
.exe windows:5 windows x86 arch:x86

c76e05ce01fb631b6ce7317a63e1a66d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

EnumProcessModules
GetModuleFileNameExW
EnumProcesses

scoredll

CreateActMan
QueryShortcutKey
SetKeyStat
CreateScore
ExtractFileFrResource
CloseOutputDevice
OpenOutputDevice
GetSysConf
SetSysString
GetSysString

vsti

asio_enum_device
config_get_vsti_output_type
config_get_vsti_output_device
midi_enum_output
config_get_midi_out_dev
config_get_vsti_program
vsti_interator_effect_programs
config_get_vsti_plugin_path
wasapi_enum_device
config_get_vsti_out_vol
config_select_vsti_output
config_open_vsti_output_device
config_set_vsti_program
config_set_vsti_out_vol
config_set_vsti_out_delay
vsti_enum_plugins
config_select_instrument
vsti_is_show_editor
config_get_vsti_out_delay
dsound_enum_device
vsti_show_editor
vsti_has_editor
config_load
config_save
config_get_instrument_type

kernel32

GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
VirtualFree
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetCurrentDirectoryA
GetDriveTypeA
CreateFileA
SetEnvironmentVariableA
RtlUnwind
HeapReAlloc
GetCPInfo
VirtualQuery
GetSystemInfo
VirtualAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
FindResourceExW
GetTempPathW
VirtualProtect
SearchPathW
GetCurrentDirectoryW
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExW
SetErrorMode
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InterlockedIncrement
SystemTimeToFileTime
GetProfileIntW
GetDiskFreeSpaceW
GetTempFileNameW
GetFileTime
SetFileTime
GetTickCount
GetCurrentThread
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
lstrcpyW
RaiseException
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
lstrcmpiW
GetThreadLocale
GetStringTypeExW
MoveFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
InterlockedDecrement
ResumeThread
SetThreadPriority
GlobalGetAtomNameW
GetModuleHandleA
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetCurrentProcessId
CopyFileW
FormatMessageW
LocalFree
HeapFree
GetProcessHeap
HeapAlloc
GlobalSize
FindClose
FindNextFileW
FindFirstFileW
GetFileAttributesW
OpenProcess
FreeLibrary
QueryPerformanceCounter
QueryPerformanceFrequency
WideCharToMultiByte
GetProcAddress
LoadLibraryW
GetLastError
SetLastError
CreateThread
WaitForSingleObject
ConvertDefaultLocale
CreateDirectoryW
lstrlenW
FreeResource
MultiByteToWideChar
lstrlenA
WritePrivateProfileStringW
InterlockedExchange
GetFileSize
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
EnterCriticalSection
LeaveCriticalSection
Sleep
MulDiv
GetPrivateProfileIntW
DeleteFileW
GetModuleFileNameW
GetModuleHandleW
CloseHandle
WriteFile
CreateFileW
FindResourceW
LoadResource
LockResource
SizeofResource
GetPrivateProfileStringW
GetSystemTimeAsFileTime
SetStdHandle
HeapSize
ExitProcess
GetShortPathNameW
ExitThread
GetFileType
InterlockedCompareExchange

user32

MapVirtualKeyExW
SubtractRect
GetWindowRgn
UnionRect
GetSysColorBrush
IsClipboardFormatAvailable
DrawIcon
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatW
SetParent
IsRectEmpty
CharUpperBuffW
LockWindowUpdate
IsZoomed
GetAsyncKeyState
NotifyWinEvent
MessageBeep
WindowFromPoint
SetWindowRgn
GetSystemMenu
CharUpperW
DestroyIcon
MapVirtualKeyW
GetKeyNameTextW
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
SystemParametersInfoW
GetMessageW
GetCursorPos
ValidateRect
UnpackDDElParam
ReuseDDElParam
DestroyMenu
LoadAcceleratorsW
InsertMenuItemW
SetRectEmpty
GetDesktopWindow
TranslateAcceleratorW
TranslateMDISysAccel
BringWindowToTop
GetActiveWindow
DefMDIChildProcW
DefFrameProcW
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
TabbedTextOutW
GetMenuCheckMarkDimensions
ModifyMenuW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
CheckRadioButton
CheckDlgButton
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
IsCharLowerW
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
IntersectRect
SystemParametersInfoA
GetWindowPlacement
LoadMenuW
GetLastActivePopup
IsWindowEnabled
GetMenuState
GetMenuStringW
GetScrollBarInfo
LoadImageW
IsWindowVisible
SetActiveWindow
SetRect
InflateRect
DrawTextW
IsWindow
EqualRect
PtInRect
GetFocus
KillTimer
SetTimer
HideCaret
ShowCaret
MessageBoxW
GetKeyState
GetClipboardData
GetUpdateRect
PostMessageW
GetWindow
GetWindowThreadProcessId
GetTopWindow
GetSysColor
CopyRect
RedrawWindow
SetCapture
CreateMenu
GetDoubleClickTime
InvalidateRgn
ReleaseCapture
UpdateWindow
IsIconic
RemoveMenu
InsertMenuW
GetMenuItemID
SetWindowPos
GetDlgCtrlID
OffsetRect
LoadBitmapW
GetMenuItemInfoW
DeleteMenu
EnableMenuItem
SetMenuItemBitmaps
SetMenuItemInfoW
SetCursor
CheckMenuItem
AppendMenuW
ClientToScreen
CharNextW
GetDCEx
WaitMessage
PostThreadMessageW
DestroyCursor
GetIconInfo
GetNextDlgGroupItem
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CopyAcceleratorTableW
DrawStateW
SetForegroundWindow
CreatePopupMenu
LoadCursorW
MapWindowPoints
FillRect
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard
DispatchMessageW
TranslateMessage
PeekMessageW
UnregisterClassW
FrameRect
SetCursorPos
SetClassLongW
DestroyAcceleratorTable
SetMenuDefaultItem
GetMenuDefaultItem
IsMenu
EnableScrollBar
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
CopyImage
GetDlgItem
PostQuitMessage
EnableWindow
SetWindowLongW
GetWindowLongW
GetClientRect
GetParent
GetWindowRect
DrawMenuBar
GetMenuItemCount
GetSubMenu
InvalidateRect
SendMessageW
GetSystemMetrics
UpdateLayeredWindow
GetDC
ReleaseDC
CopyIcon

gdi32

CopyMetaFileW
GetDCOrgEx
GetPixel
StartDocW
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
SelectPalette
GetObjectType
CreateHatchBrush
CreateRectRgnIndirect
CreateRoundRectRgn
GetBkColor
GetCharWidthW
StretchDIBits
SetRectRgn
CombineRgn
GetMapMode
StartPage
GetTextExtentPoint32W
SetAbortProc
AbortDoc
EndDoc
CreateEllipticRgn
Ellipse
GetTextMetricsW
OffsetRgn
GetRgnBox
MoveToEx
SetPixel
DPtoLP
GetTextColor
Polyline
Polygon
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
ExtFloodFill
CreatePalette
GetPaletteEntries
SetPaletteEntries
EnumFontFamiliesExW
GetNearestPaletteIndex
GetSystemPaletteEntries
RoundRect
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
SetPixelV
GetTextFaceW
SetTextColor
SetBkMode
Rectangle
CreateDCW
CreateDIBSection
SetDIBColorTable
GetStockObject
CreatePen
GetDIBColorTable
StretchBlt
DeleteDC
CreateSolidBrush
CreateFontIndirectW
GetObjectW
PatBlt
CreateFontW
GetDeviceCaps
DeleteObject
LPtoDP
CreatePolygonRgn
LineTo
RealizePalette
GetWindowOrgEx
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SelectObject
BitBlt
CreateCompatibleBitmap
EndPage
CreateCompatibleDC
SetTextAlign
IntersectClipRect
ExcludeClipRect
SetMapMode
SetROP2
SetPolyFillMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
GetClipBox

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW
GetOpenFileNameW

winspool.drv

GetJobW
OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

SetFileSecurityW
RegQueryValueExW
RegCreateKeyExW
RegFlushKey
RegCloseKey
RegDeleteKeyW
RegOpenKeyExA
RegQueryValueExA
RegSetValueW
RegSetValueExW
RegEnumKeyW
RegEnumKeyExW
RegCreateKeyW
GetFileSecurityW
RegOpenKeyExW
RegQueryValueW
RegDeleteValueW
RegOpenKeyW

shell32

DragAcceptFiles
DragQueryFileW
DragFinish
ExtractIconW
SHGetFileInfoW
SHAppBarMessage
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW

comctl32

InitCommonControlsEx
_TrackMouseEvent
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathFileExistsW
PathRemoveFileSpecW
PathRemoveExtensionW
PathFindExtensionW
PathStripToRootW
PathIsUNCW
StrToIntW

oledlg

OleUIBusyW

ole32

CoRevokeClassObject
CreateStreamOnHGlobal
CoGetClassObject
OleGetClipboard
DoDragDrop
OleFlushClipboard
CoRegisterMessageFilter
RevokeDragDrop
CoLockObjectExternal
CoInitialize
CLSIDFromProgID
CoUninitialize
CoTaskMemFree
RegisterDragDrop
CLSIDFromString
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoCreateInstance
CoInitializeEx
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleLockRunning
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleIsCurrentClipboard
OleTranslateAccelerator

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
VariantCopy
SysStringLen
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect

gdiplus

GdipGetFontCollectionFamilyCount
GdipDeletePrivateFontCollection
GdipNewPrivateFontCollection
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipSetTextRenderingHint
GdipSetSmoothingMode
GdipSetPageUnit
GdipDeletePen
GdipCreatePen1
GdipSetStringFormatHotkeyPrefix
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdiplusStartup
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipDrawImageI
GdipDrawString
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeleteFont
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFont
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdiplusShutdown
GdipDrawImageRectRectI
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateFromHDC
GdipCloneFontFamily
GdipGetFontCollectionFamilyList
GdipPrivateAddFontFile

winmm

PlaySoundW

fileconvertsystem

CreateEopmParser
CreateOveParser

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

wininet

InternetOpenUrlW
InternetReadFile
InternetOpenW
InternetCloseHandle
InternetGetConnectedState
InternetCanonicalizeUrlW

dsound

ord11

iphlpapi

GetAdaptersInfo

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 504KB - Virtual size: 504KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7.0MB - Virtual size: 7.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c76e05ce01fb631b6ce7317a63e1a66d

Headers

DLL Characteristics

File Characteristics

Imports

psapi

scoredll

vsti

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

winmm

fileconvertsystem

version

wininet

dsound

iphlpapi

imm32

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 504KB - Virtual size: 504KB

.data Size: 79KB - Virtual size: 128KB

.rsrc Size: 7.0MB - Virtual size: 7.0MB

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 504KB - Virtual size: 504KB

.data
Size: 79KB - Virtual size: 128KB

.rsrc
Size: 7.0MB - Virtual size: 7.0MB