066f1cd7afea556d034d95c02db5ade91dadf99317146037fb9543079e8c5c62

Sharing

Copy URL Twitter E-mail

General

Target

066f1cd7afea556d034d95c02db5ade91dadf99317146037fb9543079e8c5c62
Size

334KB
MD5

181426ee9898f4e5c81a967b082684c0
SHA1

5f4bb9cd7e981d1516df42786ca9638b7556715a
SHA256

066f1cd7afea556d034d95c02db5ade91dadf99317146037fb9543079e8c5c62
SHA512

bcdf8fbe593b53227c1acbb68d2c9e035d8bbae0f10d989cd50c94e81397cf9651fecd17d387b3116e4c6ccbaf9cb32dc400e82fc5e7ee880d752fb62618bcaa
SSDEEP

6144:sr1U0Vo1QdTAo9AXRAPh7YKD3N/IDv03bd0DJdWJV9ePGRLuy4ckxRAOcZW0y6Z5:y1U0Vo1QdTAoOhAPh7YKDd/IDv03bd0J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
066f1cd7afea556d034d95c02db5ade91dadf99317146037fb9543079e8c5c62

Files

066f1cd7afea556d034d95c02db5ade91dadf99317146037fb9543079e8c5c62
.dll windows:5 windows x86 arch:x86

efdd04e796846453963699d84101452e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Program Files (x86)\Vstplugins\MicrophoneEQ.pdb

Imports

kernel32

SetEndOfFile
WriteConsoleW
HeapReAlloc
GetStringTypeW
FlushFileBuffers
SetStdHandle
CreateFileA
GetConsoleMode
GetConsoleCP
LoadLibraryW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetProcessHeap
HeapSize
ExitProcess
HeapDestroy
HeapCreate
IsProcessorFeaturePresent
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
CloseHandle
SetFilePointer
DeleteCriticalSection
GetStartupInfoW
GetFileType
SetHandleCount
ReadFile
CreateFileW
LoadLibraryA
GlobalFree
GetProcAddress
GlobalUnlock
MultiByteToWideChar
GetVersionExW
WideCharToMultiByte
GlobalLock
GlobalAlloc
GlobalSize
InterlockedDecrement
InterlockedIncrement
Sleep
FreeLibrary
GetTickCount
LockResource
SizeofResource
LoadResource
LCMapStringW
FindResourceA
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
WriteFile
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RaiseException
GetCommandLineA
GetCurrentThreadId
HeapAlloc
HeapFree
CreateDirectoryA
GetLastError
EncodePointer
DecodePointer
GetFileAttributesA

user32

ReleaseCapture
GetCursor
CreateWindowExW
SetMenuInfo
CreatePopupMenu
GetCursorPos
SetWindowLongW
GetWindowTextW
AppendMenuW
GetWindowLongW
InvalidateRect
GetAsyncKeyState
GetDC
wsprintfW
BeginPaint
SetFocus
GetClientRect
GetWindowInfo
LoadCursorW
RegisterClassW
GetFocus
GetKeyState
KillTimer
UnregisterClassW
SetCapture
TrackPopupMenu
SetTimer
GetUpdateRgn
GetWindowTextLengthW
SetCursor
DestroyWindow
EndPaint
SendMessageW
MapWindowPoints
DestroyMenu
SetWindowTextW
SetMenuItemInfoW
CallWindowProcW
GetParent
PeekMessageW
GetClassNameW
SetWindowPos
GetSystemMetrics
DispatchMessageW
MessageBoxA
TrackMouseEvent
GetWindowRect
DefWindowProcW

gdi32

DeleteDC
CreateDIBSection
CreateFontIndirectW
SetBkColor
GetRegionData
DeleteObject
CreateCompatibleDC
CreateRectRgn
CreateSolidBrush
SetTextColor

comdlg32

GetOpenFileNameA

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey

shell32

DragQueryFileW
SHGetFolderPathA
ShellExecuteA

ole32

RevokeDragDrop
CoCreateInstance
DoDragDrop
RegisterDragDrop
OleUninitialize
OleInitialize

gdiplus

GdipCreateFromHDC
GdipSetSolidFillColor
GdipDrawLine
GdipFillPath
GdipGetPathLastPoint
GdipDeleteMatrix
GdipGetCellAscent
GdipSetInterpolationMode
GdipBitmapLockBits
GdipRestoreGraphics
GdipCreateBitmapFromResource
GdipCloneImage
GdipFillEllipse
GdipSetPenDashStyle
GdipCreatePath
GdipCreateFontFamilyFromName
GdipSetPixelOffsetMode
GdipCreatePen1
GdipSetPenLineJoin
GdipSetPenDashOffset
GdipCreateFromHWND
GdipSetLineBlend
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipFillRectangle
GdipGetImageHeight
GdipSetImageAttributesColorMatrix
GdipCreateBitmapFromStreamICM
GdipCloneBrush
GdipDeletePen
GdipFree
GdipDeleteBrush
GdiplusShutdown
GdipTranslateWorldTransform
GdipGetLineSpacing
GdipDrawString
GdipGetCellDescent
GdipDrawRectangle
GdipCreateImageAttributes
GdipGetGenericFontFamilySansSerif
GdipClonePath
GdipTransformPath
GdipDeletePath
GdipSetPageUnit
GdipGetFontSize
GdipCreateFont
GdipSetPenWidth
GdipAddPathLine
GdipAddPathEllipse
GdipDisposeImage
GdipCreateMatrix2
GdipAlloc
GdipSetPenColor
GdipSaveGraphics
GdipDisposeImageAttributes
GdipCreateSolidFill
GdipBitmapUnlockBits
GdipDeleteFontFamily
GdipDrawPolygon
GdipAddPathBezier
GdipGetFamily
GdipClosePathFigure
GdipSetSmoothingMode
GdipSetPenLineCap197819
GdipDrawImageRectRectI
GdipCreateLineBrush
GdipGetImageGraphicsContext
GdipSetPathFillMode
GdipSetPenDashArray
GdipAddPathRectangle
GdipGetDpiY
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGetPathWorldBounds
GdipDeleteFont
GdipDrawPath
GdipGetFontHeightGivenDPI
GdipSetTextRenderingHint
GdipSetClipRect
GdipStartPathFigure
GdipMeasureString
ord1
GdipDrawEllipse
GdipFillPolygon
GdipGetImageWidth
GdipGetEmHeight

Exports

Exports

VSTPluginMain
main

Sections

.text
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

efdd04e796846453963699d84101452e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

gdiplus

Exports

Exports

Sections

.text Size: 206KB - Virtual size: 206KB

.rdata Size: 61KB - Virtual size: 60KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 31KB - Virtual size: 31KB

.text
Size: 206KB - Virtual size: 206KB

.rdata
Size: 61KB - Virtual size: 60KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 31KB - Virtual size: 31KB