dd5c2e7f818bf7f16e99cb0b47060dfb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dd5c2e7f818bf7f16e99cb0b47060dfb_JaffaCakes118
Size

12.0MB
MD5

dd5c2e7f818bf7f16e99cb0b47060dfb
SHA1

9d82292728a5b72caf307880862fce3cfdbc6390
SHA256

1aa84851caf1ab25712e0f2890532a368da8055cab934fcf95ce4bb464e0b33c
SHA512

efef2fb2f440d9431bed158d96d9d13f2917e75a0cf2a358cc7f57ac1bd6a1c7a5caea9fd8bf340e3fe482db1bea03109df2ebdf9aa2fa850f76701321fd5fd4
SSDEEP

196608:01J4SjgkXkaEGPKNOMw2wCdE3ips5Wbf4Rc0e994fjsmt/VLOgkmG4LVMgTZc2LD:01tjplPKB3s5LR6Sr/52kZzs2

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ambient_reverb_5.5/VST2/32bit/AmbientReverb.dll
unpack001/ambient_reverb_5.5/VST2/64bit/AmbientReverb.dll
unpack001/ambient_reverb_5.5/VST3/32bit/AmbientReverb.vst3
unpack001/ambient_reverb_5.5/VST3/64bit/AmbientReverb.vst3

Files

dd5c2e7f818bf7f16e99cb0b47060dfb_JaffaCakes118
.zip
ambient_reverb_5.5/VST2/32bit/AmbientReverb.dll
.dll windows:6 windows x86 arch:x86

3dc4194a932c715bdaaec97e957e5ad6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Program Files (x86)\VSTPlugins\AmbientReverb\AmbientReverb.pdb

Imports

comctl32

InitCommonControlsEx

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

MultiByteToWideChar
LockResource
LoadResource
ExitProcess
WriteConsoleW
SetEndOfFile
HeapSize
FlushFileBuffers
CreateFileW
SetStdHandle
GetStringTypeW
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
DecodePointer
GetTimeZoneInformation
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetFileSizeEx
GetConsoleCP
WriteFile
ReadConsoleW
GetConsoleMode
SetFilePointerEx
GetFileType
GetStdHandle
HeapAlloc
HeapFree
HeapReAlloc
GetModuleFileNameW
GetModuleHandleExW
QueryPerformanceFrequency
ReadFile
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
SetLastError
InterlockedFlushSList
RaiseException
RtlUnwind
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
GetProcAddress
SizeofResource
GlobalUnlock
WideCharToMultiByte
GetCurrentProcessId
GlobalLock
GetModuleHandleExA
GetModuleFileNameA
VirtualQuery
GetWindowsDirectoryA
GetModuleHandleA
GetVolumeInformationA
FindResourceA
GetDriveTypeA
FormatMessageA
LocalFree
GetFileAttributesA
GetLastError
GetLocalTime
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
CloseHandle
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter

user32

SetForegroundWindow
ShowCursor
EnableWindow
GetUpdateRect
RegisterClassExA
GetSysColorBrush
PostQuitMessage
UnregisterClassA
DrawTextA
DrawTextW
GetWindowThreadProcessId
GetKeyState
GetMessageExtraInfo
GetWindowRect
SetWindowPos
ScreenToClient
CreatePopupMenu
GetClassNameA
TrackPopupMenu
OpenClipboard
GetCapture
SetTimer
SetWindowLongA
ClientToScreen
CloseClipboard
CallWindowProcA
GetWindowLongA
ValidateRect
TrackMouseEvent
SetWindowTextA
RegisterClassA
EnumWindows
DestroyMenu
LoadIconA
GetClipboardData
SetCapture
AppendMenuA
PeekMessageA
IsClipboardFormatAvailable
GetParent
ReleaseCapture
GetAncestor
SetCursorPos
GetCursorPos
BeginPaint
EndPaint
GetCursor
SetCursor
InvalidateRect
GetMessageA
DispatchMessageA
LoadCursorA
DestroyWindow
GetSystemMetrics
ShowWindow
IsDialogMessageA
GetWindowTextA
MessageBoxA
DefWindowProcA
CreateWindowExA
SetFocus
TranslateMessage
SendMessageA
UpdateWindow

gdi32

GetTextMetricsA
SelectObject
CreateDIBSection
CreateCompatibleDC
DeleteDC
DeleteObject
BitBlt
SetTextColor
SetBkMode
SetBkColor
CreateFontA
GetStockObject

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA

advapi32

RegFlushKey
RegSetValueExA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA

shell32

SHGetSpecialFolderPathA
SHCreateDirectoryExA
ShellExecuteA
SHGetFolderPathA

ole32

CoTaskMemFree
IIDFromString
StringFromIID
CoCreateGuid

shlwapi

PathAddBackslashA

Exports

Exports

VSTPluginMain
main

Sections

.text
Size: 385KB - Virtual size: 385KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ambient_reverb_5.5/VST2/64bit/AmbientReverb.dll
.dll windows:6 windows x64 arch:x64

8e848810d297e4000b7bb1c692222643

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Program Files\VSTPlugins\AmbientReverb.pdb

Imports

comctl32

InitCommonControlsEx

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

MultiByteToWideChar
LockResource
LoadResource
ExitProcess
WriteConsoleW
SetEndOfFile
HeapSize
FlushFileBuffers
CreateFileW
SetStdHandle
GetStringTypeW
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
GetTimeZoneInformation
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetFileSizeEx
GetConsoleCP
WriteFile
ReadConsoleW
GetConsoleMode
SetFilePointerEx
GetFileType
GetStdHandle
HeapAlloc
HeapFree
HeapReAlloc
GetModuleFileNameW
GetModuleHandleExW
QueryPerformanceFrequency
ReadFile
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
SetLastError
InterlockedFlushSList
RaiseException
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
GetProcAddress
SizeofResource
GlobalUnlock
WideCharToMultiByte
GetCurrentProcessId
GlobalLock
GetModuleHandleExA
GetModuleFileNameA
VirtualQuery
GetWindowsDirectoryA
GetModuleHandleA
GetVolumeInformationA
FindResourceA
GetDriveTypeA
FormatMessageA
LocalFree
GetFileAttributesA
GetLastError
GetLocalTime
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
CloseHandle
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

user32

ShowCursor
EnableWindow
UpdateWindow
SetForegroundWindow
RegisterClassExA
GetSysColorBrush
PostQuitMessage
UnregisterClassA
DrawTextA
DrawTextW
GetWindowThreadProcessId
GetKeyState
GetMessageExtraInfo
GetWindowRect
SetWindowPos
ScreenToClient
CreatePopupMenu
GetClassNameA
TrackPopupMenu
OpenClipboard
GetCapture
SetTimer
ClientToScreen
CloseClipboard
CallWindowProcA
GetWindowLongA
ValidateRect
TrackMouseEvent
SetWindowTextA
RegisterClassA
EnumWindows
DestroyMenu
GetUpdateRect
GetClipboardData
SetCapture
AppendMenuA
PeekMessageA
IsClipboardFormatAvailable
GetWindowLongPtrA
GetParent
SetWindowLongPtrA
ReleaseCapture
GetAncestor
SetCursorPos
GetCursorPos
BeginPaint
EndPaint
GetCursor
SetCursor
InvalidateRect
GetMessageA
DispatchMessageA
LoadCursorA
DestroyWindow
GetSystemMetrics
ShowWindow
IsDialogMessageA
GetWindowTextA
MessageBoxA
DefWindowProcA
CreateWindowExA
SetFocus
TranslateMessage
SendMessageA
LoadIconA

gdi32

GetTextMetricsA
SelectObject
CreateDIBSection
CreateCompatibleDC
DeleteDC
DeleteObject
BitBlt
SetTextColor
SetBkMode
SetBkColor
CreateFontA
GetStockObject

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA

advapi32

RegFlushKey
RegSetValueExA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA

shell32

SHGetSpecialFolderPathA
SHGetFolderPathA
SHCreateDirectoryExA
ShellExecuteA

ole32

IIDFromString
StringFromIID
CoTaskMemFree
CoCreateGuid

shlwapi

PathAddBackslashA

Exports

Exports

VSTPluginMain
main

Sections

.text
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ambient_reverb_5.5/VST3/32bit/AmbientReverb.vst3
.dll windows:6 windows x86 arch:x86

5385d43f51644fdcbbf0fca263fb6574

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Program Files (x86)\VST3\AmbientReverb\AmbientReverb.pdb

Imports

comctl32

InitCommonControlsEx

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

TryEnterCriticalSection
SetEvent
ResetEvent
ReleaseSemaphore
ReleaseMutex
WaitForSingleObject
CreateMutexW
CreateEventA
CreateEventW
Sleep
WaitForMultipleObjects
CreateSemaphoreW
GetCurrentProcess
GetCurrentProcessId
CreateThread
GetCurrentThreadId
SetThreadPriority
TerminateThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetPriorityClass
GetPriorityClass
GetModuleHandleW
GetProcAddress
GetProcessAffinityMask
SetThreadAffinityMask
PulseEvent
CreateToolhelp32Snapshot
Thread32First
Thread32Next
GlobalLock
GlobalUnlock
SizeofResource
FindResourceA
LockResource
LoadResource
ExitProcess
CreateFileW
SetStdHandle
GetStringTypeW
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
InitializeCriticalSection
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
RaiseException
FindClose
DecodePointer
GetTimeZoneInformation
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetFileSizeEx
GetConsoleCP
WriteFile
ReadConsoleW
GetConsoleMode
SetFilePointerEx
HeapReAlloc
GetFileType
GetStdHandle
HeapAlloc
HeapFree
GetModuleHandleExW
QueryPerformanceFrequency
ReadFile
LoadLibraryExW
FreeLibrary
EncodePointer
SetLastError
InterlockedFlushSList
RtlUnwind
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
FlushFileBuffers
HeapSize
SetEndOfFile
WriteConsoleW
GetFileAttributesA
CloseHandle
WideCharToMultiByte
MultiByteToWideChar
FoldStringW
GetModuleHandleExA
GetModuleFileNameA
VirtualQuery
GetWindowsDirectoryA
GetModuleHandleA
GetVolumeInformationA
GetDriveTypeA
LocalFree
FormatMessageA
GetLastError
GetLocalTime
FindFirstFileExW
DeleteCriticalSection
GetCPInfo

user32

ScreenToClient
SetWindowPos
GetWindowRect
GetMessageExtraInfo
GetKeyState
GetWindowThreadProcessId
DrawTextW
EnableWindow
ShowCursor
SetForegroundWindow
UpdateWindow
RegisterClassExA
GetSysColorBrush
DrawTextA
IsClipboardFormatAvailable
CreatePopupMenu
GetClassNameA
TrackPopupMenu
OpenClipboard
GetCapture
SetTimer
SetWindowLongA
CloseClipboard
CallWindowProcA
GetWindowLongA
ValidateRect
TrackMouseEvent
SetWindowTextA
RegisterClassA
EnumWindows
DestroyMenu
GetUpdateRect
GetClipboardData
SetCapture
AppendMenuA
PeekMessageA
ClientToScreen
GetParent
ReleaseCapture
GetAncestor
SetCursorPos
GetCursorPos
BeginPaint
EndPaint
CharLowerW
CharLowerA
CharUpperW
CharUpperA
GetCursor
SetCursor
InvalidateRect
GetMessageA
DispatchMessageA
LoadCursorA
DestroyWindow
GetSystemMetrics
ShowWindow
IsDialogMessageA
GetWindowTextA
MessageBoxA
DefWindowProcA
CreateWindowExA
SetFocus
TranslateMessage
SendMessageA
LoadIconA
UnregisterClassA
PostQuitMessage

gdi32

GetTextMetricsA
SelectObject
CreateDIBSection
CreateCompatibleDC
DeleteDC
DeleteObject
BitBlt
SetTextColor
SetBkMode
SetBkColor
CreateFontA
GetStockObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

advapi32

RegOpenKeyExA
RegSetValueExA
RegFlushKey
RegCreateKeyExA
RegQueryValueExA
RegCloseKey
RegOpenKeyA

shell32

SHGetFolderPathA
ShellExecuteA
SHGetSpecialFolderPathA
SHCreateDirectoryExA

ole32

CoCreateGuid
StringFromIID
CoUninitialize
CoInitialize
CoTaskMemFree
IIDFromString

shlwapi

PathAddBackslashA

Exports

Exports

ExitDll
GetPluginFactory
InitDll

Sections

.text
Size: 473KB - Virtual size: 472KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 307KB - Virtual size: 306KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ambient_reverb_5.5/VST3/64bit/AmbientReverb.vst3
.dll windows:6 windows x64 arch:x64

3876abf3efd1970b6d5325b68fefc65a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Program Files\VST3\AmbientReverb.pdb

Imports

comctl32

InitCommonControlsEx

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

SetEvent
ResetEvent
ReleaseSemaphore
ReleaseMutex
WaitForSingleObject
CreateMutexW
CreateEventA
CreateEventW
Sleep
WaitForMultipleObjects
CreateSemaphoreW
GetCurrentProcess
GetCurrentProcessId
CreateThread
GetCurrentThreadId
SetThreadPriority
TerminateThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetPriorityClass
GetPriorityClass
GetModuleHandleW
GetProcAddress
GetProcessAffinityMask
SetThreadAffinityMask
PulseEvent
CreateToolhelp32Snapshot
Thread32First
Thread32Next
GlobalLock
GlobalUnlock
SizeofResource
FindResourceA
LockResource
LoadResource
ExitProcess
FlushFileBuffers
CreateFileW
SetStdHandle
GetStringTypeW
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
InitializeCriticalSection
IsValidCodePage
FindNextFileW
TryEnterCriticalSection
FindClose
GetTimeZoneInformation
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetFileSizeEx
GetConsoleCP
WriteFile
ReadConsoleW
GetConsoleMode
SetFilePointerEx
HeapReAlloc
GetFileType
GetStdHandle
HeapAlloc
HeapFree
GetModuleHandleExW
QueryPerformanceFrequency
ReadFile
LoadLibraryExW
FreeLibrary
EncodePointer
SetLastError
InterlockedFlushSList
RaiseException
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
HeapSize
CloseHandle
WideCharToMultiByte
MultiByteToWideChar
FoldStringW
GetModuleHandleExA
GetModuleFileNameA
VirtualQuery
GetWindowsDirectoryA
GetModuleHandleA
GetVolumeInformationA
GetDriveTypeA
LocalFree
FormatMessageA
GetFileAttributesA
GetLastError
GetLocalTime
FindFirstFileExW
SetEndOfFile
WriteConsoleW
DeleteCriticalSection
GetACP

user32

GetKeyState
GetWindowThreadProcessId
DrawTextW
EnableWindow
ShowCursor
SetForegroundWindow
UpdateWindow
RegisterClassExA
GetSysColorBrush
DrawTextA
GetWindowLongPtrA
GetMessageExtraInfo
GetWindowRect
SetWindowPos
ScreenToClient
CreatePopupMenu
GetClassNameA
TrackPopupMenu
OpenClipboard
SetTimer
ClientToScreen
CloseClipboard
CallWindowProcA
GetWindowLongA
ValidateRect
TrackMouseEvent
SetWindowTextA
RegisterClassA
EnumWindows
DestroyMenu
GetUpdateRect
GetClipboardData
SetCapture
AppendMenuA
PeekMessageA
IsClipboardFormatAvailable
GetCapture
GetParent
SetWindowLongPtrA
ReleaseCapture
GetAncestor
SetCursorPos
GetCursorPos
BeginPaint
EndPaint
CharLowerW
CharLowerA
CharUpperW
CharUpperA
GetCursor
SetCursor
InvalidateRect
GetMessageA
DispatchMessageA
LoadCursorA
DestroyWindow
GetSystemMetrics
ShowWindow
IsDialogMessageA
GetWindowTextA
MessageBoxA
DefWindowProcA
CreateWindowExA
SetFocus
TranslateMessage
SendMessageA
LoadIconA
UnregisterClassA
PostQuitMessage

gdi32

GetTextMetricsA
SelectObject
CreateDIBSection
CreateCompatibleDC
DeleteDC
DeleteObject
BitBlt
SetTextColor
SetBkMode
SetBkColor
CreateFontA
GetStockObject

comdlg32

GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

advapi32

RegCreateKeyExA
RegFlushKey
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegOpenKeyA

shell32

SHGetFolderPathA
SHCreateDirectoryExA
SHGetSpecialFolderPathA
ShellExecuteA

ole32

CoCreateGuid
StringFromIID
CoUninitialize
CoInitialize
CoTaskMemFree
IIDFromString

shlwapi

PathAddBackslashA

Exports

Exports

ExitDll
GetPluginFactory
InitDll

Sections

.text
Size: 526KB - Virtual size: 526KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 347KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.6MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ambient_reverb_5.5/help.html
ambient_reverb_5.5/readme.html

Sharing

General

Malware Config

Signatures

Files

3dc4194a932c715bdaaec97e957e5ad6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

Exports

Exports

Sections

.text Size: 385KB - Virtual size: 385KB

.rdata Size: 285KB - Virtual size: 284KB

.data Size: 2.6MB - Virtual size: 2.6MB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 18KB - Virtual size: 17KB

8e848810d297e4000b7bb1c692222643

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

Exports

Exports

Sections

.text Size: 424KB - Virtual size: 424KB

.rdata Size: 305KB - Virtual size: 304KB

.data Size: 2.6MB - Virtual size: 2.6MB

.pdata Size: 16KB - Virtual size: 15KB

_RDATA Size: 512B - Virtual size: 148B

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 3KB - Virtual size: 3KB

5385d43f51644fdcbbf0fca263fb6574

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

Exports

Exports

Sections

.text Size: 473KB - Virtual size: 472KB

.rdata Size: 307KB - Virtual size: 306KB

.data Size: 2.6MB - Virtual size: 2.6MB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 26KB - Virtual size: 26KB

3876abf3efd1970b6d5325b68fefc65a

.text
Size: 385KB - Virtual size: 385KB

.rdata
Size: 285KB - Virtual size: 284KB

.data
Size: 2.6MB - Virtual size: 2.6MB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 18KB - Virtual size: 17KB

.text
Size: 424KB - Virtual size: 424KB

.rdata
Size: 305KB - Virtual size: 304KB

.data
Size: 2.6MB - Virtual size: 2.6MB

.pdata
Size: 16KB - Virtual size: 15KB

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 3KB - Virtual size: 3KB

.text
Size: 473KB - Virtual size: 472KB

.rdata
Size: 307KB - Virtual size: 306KB

.data
Size: 2.6MB - Virtual size: 2.6MB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 26KB - Virtual size: 26KB

.text
Size: 526KB - Virtual size: 526KB

.rdata
Size: 347KB - Virtual size: 346KB

.data
Size: 2.6MB - Virtual size: 2.7MB

.pdata
Size: 23KB - Virtual size: 22KB

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 6KB - Virtual size: 6KB