mp3gain[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

mp3gain.exe
Size

128KB
MD5

f44f61cb7140e42c0e65450160b9a6f3
SHA1

7ffdbd37ba065cd6075fa81344dc6ae4916dff26
SHA256

d46bc2e80b516a0b2423d01ee04e79d7a8d5e0b440ef54d40c8e5df3547ef1cf
SHA512

4b478ca4b383249296a1c8713cc80f39cbf87c1f0fd9940b72592c5f3245beb9834ab633c3718dd6f48e06730560d02b0844b0f5bca16e24b2da8b81a56ff132
SSDEEP

3072:gfj4b5/tdzFP+jv39GQdl/7u2HeHxmk21FUbdperf+6RlofJ/eq:Ztd+tGQdl/7u2HeHxvt5QIj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
mp3gain.exe

Files

mp3gain.exe
.exe windows:4 windows x86 arch:x86

5fe6f0a785ad0156af29de69b79d09c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CloseHandle
GetFileTime
CreateFileA
GetModuleFileNameA
HeapAlloc
HeapFree
GetLastError
SetEndOfFile
GetFileType
ExitProcess
TerminateProcess
GetCurrentProcess
DeleteFileA
MoveFileA
RtlUnwind
GetCommandLineA
GetVersion
FindNextFileA
FindFirstFileA
FindClose
GetCPInfo
GetACP
GetOEMCP
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
ReadFile
SetFilePointer
GetProcAddress
GetModuleHandleA
SetStdHandle
SetHandleCount
GetStdHandle
GetStartupInfoA
WriteFile
RaiseException
FlushFileBuffers
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
LoadLibraryA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ