70d2313263e5cd646a227f123cc76f3a

Sharing

Copy URL

Twitter E-mail

General

Target

70d2313263e5cd646a227f123cc76f3a
Size

136KB
MD5

70d2313263e5cd646a227f123cc76f3a
SHA1

4c7d36bf37881e6222f9590d7b5b256b9b481568
SHA256

48c74219304faa9b09e23c509c47e161f45e0f8e1b4d079bb60d8602b14ab2c1
SHA512

68f4c233440e6b817606993768fd6d597c25d3a4a4d24ad7d808b8a984ea5477a635daa9defff8a5fbec33d3113127917295aa3dd56a06d48a2c55ddf78af178
SSDEEP

3072:rY6j+vmky9pR22RpReWrguwGRP/0rukHtc+PnatHzCs7X:rY6jk5yvs2lrPv67PnaNuW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Guitar_Pro_keygen.exe

Files

70d2313263e5cd646a227f123cc76f3a
.zip
FILE_ID.DIZ
Guitar_Pro_keygen.exe
.exe windows:5 windows x86 arch:x86

a6270b2f92cb06f6d9168502c07a0776

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathUndecorateA
ChrCmpIA
StrPBrkA
PathCombineW
StrFormatKBSizeA

shell32

ord716

kernel32

SetMessageWaitingIndicator
VerifyVersionInfoW
GetCommMask
CancelTimerQueueTimer
GetCommandLineA
CloseHandle
TlsFree
UnlockFile
FileTimeToDosDateTime
DefineDosDeviceW
BackupWrite
LoadLibraryExW
CreateFiber
lstrcpyA
OpenMutexA
LoadLibraryA
GetNamedPipeInfo
OpenSemaphoreA
WriteProfileStringW

user32

UnloadKeyboardLayout
CheckMenuItem
GetPropW
LoadCursorA
ReleaseCapture
GetCursor
WindowFromDC
IsCharLowerW
CheckDlgButton
DlgDirSelectComboBoxExW
EndDialog
SetScrollPos
ChangeDisplaySettingsExA
GetDC
CreateIconIndirect
GetMenuCheckMarkDimensions
DrawTextExW
TrackPopupMenu
DestroyAcceleratorTable
GetClassNameA
TranslateAcceleratorW
SetWindowPlacement
GetWindowTextLengthW
LoadMenuIndirectA
WaitForInputIdle
GetTabbedTextExtentW
wsprintfW
SetSysColors
PeekMessageW
DrawStateW
GetRawInputDeviceInfoA
RedrawWindow
GetMenuStringA
GetMenuContextHelpId
ClipCursor
DispatchMessageA
GetSystemMetrics
SetCaretPos
SendMessageW
GetMessageTime
GetWindow
RemovePropA

gdi32

SetPixelFormat
GetCurrentPositionEx
CreateBrushIndirect
SetBitmapDimensionEx
CreatePolygonRgn
GetCharWidthFloatW
GetTextExtentPoint32A
GetPixelFormat
BitBlt
GetEnhMetaFileBits
EndPath
SetTextJustification
AddFontResourceExA
RoundRect

advapi32

FindFirstFreeAce
AreAnyAccessesGranted
AddAccessAllowedAceEx
CloseEventLog

Exports

Exports

__GetWindowTextA@12

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.exdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.memo0
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c_mem
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datse
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 950B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ViKiNG.nfo

Sharing

General

Malware Config

Signatures

Files

a6270b2f92cb06f6d9168502c07a0776

Headers

File Characteristics

Imports

shlwapi

shell32

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.exdata Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 388B

.memo0 Size: 512B - Virtual size: 92B

.c_mem Size: 512B - Virtual size: 68B

.datse Size: 4KB - Virtual size: 3KB

.rsrc Size: 127KB - Virtual size: 127KB

.reloc Size: 1024B - Virtual size: 950B

.text
Size: 10KB - Virtual size: 9KB

.exdata
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 388B

.memo0
Size: 512B - Virtual size: 92B

.c_mem
Size: 512B - Virtual size: 68B

.datse
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 127KB - Virtual size: 127KB

.reloc
Size: 1024B - Virtual size: 950B