0d2cc01734eb97b95337d59075201e9531f2bb919a691386e1bcec6a990927d8

Sharing

Copy URL Twitter E-mail

General

Target

0d2cc01734eb97b95337d59075201e9531f2bb919a691386e1bcec6a990927d8
Size

2.3MB
MD5

ce08fa153ac20bb534bd2a3cdf97883d
SHA1

77e65b596c386604b27b964fa5bdb148f97fc19c
SHA256

0d2cc01734eb97b95337d59075201e9531f2bb919a691386e1bcec6a990927d8
SHA512

8fb0adc30c619256675bbb01a47a414e8ea401520fbd9ff11828ffed40c18c7f35c98bfe8fcff7ce32650d955540cfc293da6264b2166c215842e15a7ea187a8
SSDEEP

49152:/l0Hjklplr1mMlt+ofzRrxH9JUv28gqZtsgxs1XpZ2ur29ytj:YklplhmMlt+UlxH9JUv2ctnis7Gj

Score

3^/10

Malware Config

Signatures

Unsigned PE 8 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bass_mpc.dll
unpack001/foo_midi.dll
unpack001/scpipe32.exe
unpack001/scpipe64.exe
unpack001/vsthost32.exe
unpack001/vsthost64.exe
unpack001/x64/bass_mpc.dll
unpack001/x64/foo_midi.dll

Files

0d2cc01734eb97b95337d59075201e9531f2bb919a691386e1bcec6a990927d8
.zip
bass.dll
.dll windows:4 windows x86 arch:x86

Code Sign

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

31/01/2022, 16:17

Not After

28/01/2023, 16:17

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

49:9c:77:14:4f:8a:4c:25:7a:74:34:5d:a5:86:3b:65:c3:03:b5:93
Signer

Actual PE Digest

49:9c:77:14:4f:8a:4c:25:7a:74:34:5d:a5:86:3b:65:c3:03:b5:93

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

BASS_Apply3D
BASS_ChannelBytes2Seconds
BASS_ChannelFlags
BASS_ChannelFree
BASS_ChannelGet3DAttributes
BASS_ChannelGet3DPosition
BASS_ChannelGetAttribute
BASS_ChannelGetAttributeEx
BASS_ChannelGetData
BASS_ChannelGetDevice
BASS_ChannelGetInfo
BASS_ChannelGetLength
BASS_ChannelGetLevel
BASS_ChannelGetLevelEx
BASS_ChannelGetPosition
BASS_ChannelGetTags
BASS_ChannelIsActive
BASS_ChannelIsSliding
BASS_ChannelLock
BASS_ChannelPause
BASS_ChannelPlay
BASS_ChannelRemoveDSP
BASS_ChannelRemoveFX
BASS_ChannelRemoveLink
BASS_ChannelRemoveSync
BASS_ChannelSeconds2Bytes
BASS_ChannelSet3DAttributes
BASS_ChannelSet3DPosition
BASS_ChannelSetAttribute
BASS_ChannelSetAttributeEx
BASS_ChannelSetDSP
BASS_ChannelSetDevice
BASS_ChannelSetFX
BASS_ChannelSetLink
BASS_ChannelSetPosition
BASS_ChannelSetSync
BASS_ChannelSlideAttribute
BASS_ChannelStart
BASS_ChannelStop
BASS_ChannelUpdate
BASS_ErrorGetCode
BASS_FXGetParameters
BASS_FXReset
BASS_FXSetParameters
BASS_FXSetPriority
BASS_Free
BASS_Get3DFactors
BASS_Get3DPosition
BASS_GetCPU
BASS_GetConfig
BASS_GetConfigPtr
BASS_GetDSoundObject
BASS_GetDevice
BASS_GetDeviceInfo
BASS_GetEAXParameters
BASS_GetInfo
BASS_GetVersion
BASS_GetVolume
BASS_Init
BASS_IsStarted
BASS_MusicFree
BASS_MusicLoad
BASS_Pause
BASS_PluginEnable
BASS_PluginFree
BASS_PluginGetInfo
BASS_PluginLoad
BASS_RecordFree
BASS_RecordGetDevice
BASS_RecordGetDeviceInfo
BASS_RecordGetInfo
BASS_RecordGetInput
BASS_RecordGetInputName
BASS_RecordInit
BASS_RecordSetDevice
BASS_RecordSetInput
BASS_RecordStart
BASS_SampleCreate
BASS_SampleFree
BASS_SampleGetChannel
BASS_SampleGetChannels
BASS_SampleGetData
BASS_SampleGetInfo
BASS_SampleLoad
BASS_SampleSetData
BASS_SampleSetInfo
BASS_SampleStop
BASS_Set3DFactors
BASS_Set3DPosition
BASS_SetConfig
BASS_SetConfigPtr
BASS_SetDevice
BASS_SetEAXParameters
BASS_SetVolume
BASS_Start
BASS_Stop
BASS_StreamCreate
BASS_StreamCreateFile
BASS_StreamCreateFileUser
BASS_StreamCreateURL
BASS_StreamFree
BASS_StreamGetFilePosition
BASS_StreamPutData
BASS_StreamPutFileData
BASS_Update
_

Sections

Size: 123KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
bass_mpc.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

BASS_MPC_StreamCreateFile
BASS_MPC_StreamCreateFileUser
BASS_MPC_StreamCreateURL
BASSplugin

Sections

Size: 18KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 777B - Virtual size: 777B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
bassflac.dll
.dll windows:4 windows x86 arch:x86

Code Sign

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

17/01/2023, 15:07

Not After

16/01/2026, 15:07

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

27:f4:35:69:c5:44:b3:65:5b:60:b3:60:04:0b:b5:dd:9f:4e:d9:12
Signer

Actual PE Digest

27:f4:35:69:c5:44:b3:65:5b:60:b3:60:04:0b:b5:dd:9f:4e:d9:12

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

bassflac.pdb

Exports

Exports

BASS_FLAC_StreamCreateFile
BASS_FLAC_StreamCreateFileUser
BASS_FLAC_StreamCreateURL
BASSplugin

Sections

Size: 28KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 845B - Virtual size: 845B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
bassmidi.dll
.dll windows:4 windows x86 arch:x86

Code Sign

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

31/01/2022, 16:17

Not After

28/01/2023, 16:17

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

71:1a:be:0f:4e:0f:08:06:7e:ec:f0:5b:54:f5:63:90:bb:ab:33:e8
Signer

Actual PE Digest

71:1a:be:0f:4e:0f:08:06:7e:ec:f0:5b:54:f5:63:90:bb:ab:33:e8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

BASS_MIDI_ConvertEvents
BASS_MIDI_FontCompact
BASS_MIDI_FontFlags
BASS_MIDI_FontFree
BASS_MIDI_FontGetInfo
BASS_MIDI_FontGetPreset
BASS_MIDI_FontGetPresets
BASS_MIDI_FontGetVolume
BASS_MIDI_FontInit
BASS_MIDI_FontInitUser
BASS_MIDI_FontLoad
BASS_MIDI_FontLoadEx
BASS_MIDI_FontPack
BASS_MIDI_FontSetVolume
BASS_MIDI_FontUnload
BASS_MIDI_FontUnpack
BASS_MIDI_GetVersion
BASS_MIDI_InFree
BASS_MIDI_InGetDeviceInfo
BASS_MIDI_InInit
BASS_MIDI_InStart
BASS_MIDI_InStop
BASS_MIDI_StreamCreate
BASS_MIDI_StreamCreateEvents
BASS_MIDI_StreamCreateFile
BASS_MIDI_StreamCreateFileUser
BASS_MIDI_StreamCreateURL
BASS_MIDI_StreamEvent
BASS_MIDI_StreamEvents
BASS_MIDI_StreamGetChannel
BASS_MIDI_StreamGetEvent
BASS_MIDI_StreamGetEvents
BASS_MIDI_StreamGetEventsEx
BASS_MIDI_StreamGetFonts
BASS_MIDI_StreamGetMark
BASS_MIDI_StreamGetMarks
BASS_MIDI_StreamGetPreset
BASS_MIDI_StreamLoadSamples
BASS_MIDI_StreamSetFilter
BASS_MIDI_StreamSetFonts
BASSplugin

Sections

Size: 57KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
bassopus.dll
.dll windows:4 windows x86 arch:x86

Code Sign

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

17/01/2023, 15:07

Not After

16/01/2026, 15:07

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

ef:b6:45:96:55:48:ec:71:54:6c:cd:ec:dd:53:84:7c:8c:54:51:31
Signer

Actual PE Digest

ef:b6:45:96:55:48:ec:71:54:6c:cd:ec:dd:53:84:7c:8c:54:51:31

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

bassopus.pdb

Exports

Exports

BASS_OPUS_StreamCreate
BASS_OPUS_StreamCreateFile
BASS_OPUS_StreamCreateFileUser
BASS_OPUS_StreamCreateURL
BASS_OPUS_StreamPutData
BASSplugin

Sections

Size: 67KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 912B - Virtual size: 912B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
basswv.dll
.dll windows:4 windows x86 arch:x86

Code Sign

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

17/01/2023, 15:07

Not After

16/01/2026, 15:07

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

c1:30:b5:7a:62:4c:82:6a:4f:fd:1e:70:34:05:2f:13:17:f9:b0:8e
Signer

Actual PE Digest

c1:30:b5:7a:62:4c:82:6a:4f:fd:1e:70:34:05:2f:13:17:f9:b0:8e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

basswv.pdb

Exports

Exports

BASS_WV_StreamCreateFile
BASS_WV_StreamCreateFileUser
BASS_WV_StreamCreateFileUserEx
BASS_WV_StreamCreateURL
BASSplugin

Sections

Size: 30KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 876B - Virtual size: 876B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
foo_midi.dll
.dll windows:6 windows x86 arch:x86

c4f8f3dc990aae2a1bb5f4740a2feb85

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Peter\Code\C++\Media\foobar2000\foo_midi\Release\foo_midi.pdb

Imports

shared

_uReplaceCharAdd@24
_uAppendMenu@16
_uGetWindowText@8
??0uCallStackTracker@@QAE@PBD@Z
??1uCallStackTracker@@QAE@XZ
_uBugCheck@0
_uFindFirstFile@4
_stricmp_utf8_partial@12
_uGetOpenFileName@32
_uBrowseForFolder@12
_uSendMessageText@16
_uSetWindowText@8
?convert_from_int16@audio_math@@YGXPBFIPAMM@Z
?convert_from_int32@audio_math@@YGXPBHIPAMM@Z
_GetInfiniteWaitEvent@0
_stricmp_utf8@8
_uSetDlgItemText@12
_uExceptFilterProc@4
_uPrintCrashInfo_OnEvent@8

bass

BASS_Init
BASS_ChannelGetData
BASS_StreamFree
BASS_ChannelSetAttribute
BASS_ChannelGetAttribute
BASS_ErrorGetCode
BASS_SetConfig
BASS_SetConfigPtr
BASS_PluginLoad

bassmidi

BASS_MIDI_StreamCreate
BASS_MIDI_StreamEvents
BASS_MIDI_FontSetVolume
BASS_MIDI_FontGetInfo
BASS_MIDI_FontFree
BASS_MIDI_FontInit
BASS_MIDI_FontGetPreset
BASS_MIDI_FontGetPresets
BASS_MIDI_StreamSetFonts

winmm

midiOutOpen
midiOutShortMsg
midiOutPrepareHeader
midiOutLongMsg
midiOutUnprepareHeader
midiOutGetNumDevs
midiOutGetErrorTextA
midiOutGetDevCapsW
midiOutClose
midiOutReset

kernel32

CancelIoEx
OutputDebugStringW
MultiByteToWideChar
WideCharToMultiByte
ResumeThread
IsDebuggerPresent
GetSystemTimeAsFileTime
FormatMessageW
InterlockedPushEntrySList
FlushInstructionCache
EncodePointer
VirtualAlloc
VirtualFree
InitializeSListHead
LoadLibraryExA
DisableThreadLibraryCalls
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
Sleep
WriteFile
InterlockedPopEntrySList
GetOverlappedResult
WaitForMultipleObjects
ReadFile
ResetEvent
GetCurrentThread
InitOnceComplete
InitOnceBeginInitialize
WakeAllConditionVariable
SleepConditionVariableSRW
UnhandledExceptionFilter
FormatMessageA
GetLastError
RaiseException
InitializeCriticalSectionEx
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
DecodePointer
GetCurrentThreadId
HeapAlloc
HeapFree
GetProcessHeap
SetLastError
InitializeCriticalSection
AcquireSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockShared
ReleaseSRWLockExclusive
FreeLibrary
SetDllDirectoryW
LoadLibraryW
GetProcAddress
DeleteFileA
MulDiv
GetTempPathA
GetTempFileNameA
CloseHandle
TerminateProcess
GetCurrentProcess
WaitForSingleObject
CreateEventW
CreateNamedPipeW
CreateFileW
DuplicateHandle
GetStdHandle
CreateProcessW
SetPriorityClass
GetPriorityClass
SetThreadPriority
GetThreadPriority

user32

SetDlgItemTextW
GetDlgItemInt
EnableWindow
IsWindowEnabled
SetTimer
ShowWindow
CreateDialogParamW
GetDlgItem
SetDlgItemInt
GetDlgItemTextW
SendMessageW
DestroyWindow
SetWindowLongW
UnregisterClassW
DestroyMenu
TrackPopupMenu
CreatePopupMenu
SendDlgItemMessageW
GetWindowRect

ole32

CoUninitialize
CoInitialize
CoCreateGuid

msvcp140

??1facet@locale@std@@MAE@XZ
?_Xbad_function_call@std@@YAXXZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
??Bid@locale@std@@QAEIXZ
?id@?$numpunct@D@std@@2V0locale@2@A
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0facet@locale@std@@IAE@I@Z
?_Xlength_error@std@@YAXPBD@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Gettrue@_Locinfo@std@@QBEPBDXZ
??0_Lockit@std@@QAE@H@Z
??0_Locinfo@std@@QAE@PBD@Z
??1_Lockit@std@@QAE@XZ
??1_Locinfo@std@@QAE@XZ
?_Incref@facet@locale@std@@UAEXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Xbad_alloc@std@@YAXXZ

shlwapi

PathIsDirectoryW

vcruntime140

_except_handler4_common
_CxxThrowException
memset
__std_type_info_destroy_list
__current_exception
memcpy
memchr
wcsrchr
strchr
strstr
strrchr
_purecall
__std_exception_copy
__std_exception_destroy
__std_terminate
__CxxFrameHandler3
__current_exception_context
memcmp
memmove

api-ms-win-crt-heap-l1-1-0

realloc
_expand
free
malloc
calloc
_callnewh

api-ms-win-crt-runtime-l1-1-0

_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_cexit
terminate
_initterm
_initterm_e
_invalid_parameter_noinfo_noreturn
_wassert
_beginthreadex
abort
_seh_filter_dll
_errno

api-ms-win-crt-string-l1-1-0

_wcsicmp
tolower
strncat
strncpy
isdigit
strncmp
wcscat_s
_stricmp
_strnicmp
isalpha
_strdup
strcpy_s
wcscpy_s
strcmp

api-ms-win-crt-convert-l1-1-0

_wtof
_wtoi

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s
_wfopen_s
fseek
ftell
fread
fclose
fwrite
fgets
__stdio_common_vsprintf
_wfopen
fopen
__stdio_common_vfprintf
__acrt_iob_func
puts
fopen_s
feof

api-ms-win-crt-math-l1-1-0

_ldsign
_CIfmod
_dclass
round
_fdclass
lroundf
trunc
_ldclass
_libm_sse2_exp_precise
_libm_sse2_log10_precise
_libm_sse2_log_precise
_libm_sse2_pow_precise
_libm_sse2_sin_precise
_libm_sse2_sqrt_precise
ceil
floor
lrintf
_dsign
_libm_sse2_cos_precise
_fdsign

api-ms-win-crt-time-l1-1-0

_time64
_difftime64

api-ms-win-crt-utility-l1-1-0

rand
qsort
srand

Exports

Exports

foobar2000_get_interface

Sections

.text
Size: 741KB - Virtual size: 741KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scpipe32.exe
.exe windows:6 windows x86 arch:x86

33c0cf38f1a5aaef2781442702793f85

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Peter\Code\C++\Media\foobar2000\foo_midi\Release\scpipe32.pdb

Imports

kernel32

LoadLibraryW
GetProcAddress
FreeLibrary
ReadFile
GetCommandLineW
GetCurrentProcess
GetStdHandle
WriteFile
TerminateProcess
CreateFileW
CloseHandle
SetStdHandle
LocalFree
UnhandledExceptionFilter
IsDebuggerPresent
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleW
GetStartupInfoW
InitializeSListHead
GetSystemTimeAsFileTime
IsProcessorFeaturePresent

shell32

CommandLineToArgvW

ole32

CoInitialize
CoUninitialize

vcruntime140

__current_exception
_CxxThrowException
memset
_except_handler4_common
__std_exception_destroy
__std_exception_copy
__current_exception_context
memmove

api-ms-win-crt-heap-l1-1-0

malloc
realloc
_set_new_mode
_callnewh
free

api-ms-win-crt-runtime-l1-1-0

_c_exit
_register_thread_local_exe_atexit_callback
_initterm
_get_wide_winmain_command_line
_initialize_wide_environment
_configure_wide_argv
_exit
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_controlfp_s
terminate
exit
_invalid_parameter_noinfo_noreturn
_cexit
_initterm_e
_seh_filter_exe
_set_app_type

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scpipe64.exe
.exe windows:6 windows x64 arch:x64

f2d56f537a729bf11d8ed79a37f3788c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Peter\Code\C++\Media\foobar2000\foo_midi\x64\Release\scpipe64.pdb

Imports

kernel32

LoadLibraryW
GetProcAddress
FreeLibrary
ReadFile
GetCommandLineW
GetCurrentProcess
GetStdHandle
WriteFile
TerminateProcess
CreateFileW
CloseHandle
SetStdHandle
LocalFree
UnhandledExceptionFilter
IsDebuggerPresent
SetUnhandledExceptionFilter
RtlLookupFunctionEntry
RtlVirtualUnwind
IsProcessorFeaturePresent
QueryPerformanceCounter
GetModuleHandleW
GetStartupInfoW
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
GetSystemTimeAsFileTime
RtlCaptureContext

shell32

CommandLineToArgvW

ole32

CoInitialize
CoUninitialize

vcruntime140

__current_exception
_CxxThrowException
memmove
__std_exception_copy
__current_exception_context
__C_specific_handler
memset
__std_exception_destroy
memcpy

api-ms-win-crt-heap-l1-1-0

realloc
_callnewh
free
_set_new_mode
malloc

api-ms-win-crt-runtime-l1-1-0

_c_exit
_cexit
_exit
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
exit
_initterm_e
_register_thread_local_exe_atexit_callback
_initterm
_get_wide_winmain_command_line
_set_app_type
_seh_filter_exe
_initialize_wide_environment
_invalid_parameter_noinfo_noreturn
_configure_wide_argv

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vsthost32.exe
.exe windows:6 windows x86 arch:x86

95e9ac90535ee1ce7ccf3778bc604ec1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Peter\Code\C++\Media\foobar2000\foo_midi\Release\vsthost32.pdb

Imports

comctl32

InitCommonControlsEx

kernel32

ReadFile
GetCommandLineW
GetCurrentProcess
GetStdHandle
WriteFile
TerminateProcess
CreateFileW
CloseHandle
LoadLibraryW
SetStdHandle
GetProcAddress
LocalFree
UnhandledExceptionFilter
FreeLibrary
IsDebuggerPresent
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
GetModuleHandleW
IsProcessorFeaturePresent

user32

SetWindowTextW
GetDesktopWindow
SetTimer
DialogBoxIndirectParamW
SetWindowPos
EndDialog
GetWindowLongW
KillTimer
SetRect
SetWindowLongW
AdjustWindowRectEx

shell32

CommandLineToArgvW

ole32

CoInitialize
CoUninitialize

msvcp140

?_Xlength_error@std@@YAXPBD@Z

vcruntime140

_CxxThrowException
__current_exception
__current_exception_context
memset
_except_handler4_common
__std_exception_copy
memmove
__std_exception_destroy
__CxxFrameHandler3
memcpy
strrchr

api-ms-win-crt-heap-l1-1-0

free
_callnewh
malloc
calloc
_set_new_mode

api-ms-win-crt-convert-l1-1-0

wcstombs
wcstoul

api-ms-win-crt-string-l1-1-0

strncpy

api-ms-win-crt-runtime-l1-1-0

_c_exit
_register_thread_local_exe_atexit_callback
_cexit
_initterm
_set_app_type
_seh_filter_exe
_register_onexit_function
_get_narrow_winmain_command_line
_crt_atexit
_controlfp_s
terminate
_exit
_initialize_narrow_environment
exit
_configure_narrow_argv
_initialize_onexit_table
_invalid_parameter_noinfo_noreturn
_initterm_e

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vsthost64.exe
.exe windows:6 windows x64 arch:x64

5736c19143de976ba1788c4baff69592

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Peter\Code\C++\Media\foobar2000\foo_midi\x64\Release\vsthost64.pdb

Imports

comctl32

InitCommonControlsEx

kernel32

ReadFile
GetCommandLineW
GetCurrentProcess
GetStdHandle
WriteFile
TerminateProcess
CreateFileW
CloseHandle
LoadLibraryW
SetStdHandle
GetProcAddress
LocalFree
UnhandledExceptionFilter
FreeLibrary
IsDebuggerPresent
SetUnhandledExceptionFilter
RtlLookupFunctionEntry
RtlVirtualUnwind
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
GetModuleHandleW
RtlCaptureContext

user32

SetWindowLongPtrW
EndDialog
GetDesktopWindow
GetWindowLongW
SetWindowPos
SetWindowTextW
KillTimer
SetRect
DialogBoxIndirectParamW
SetTimer
AdjustWindowRectEx
GetWindowLongPtrW

shell32

CommandLineToArgvW

ole32

CoInitialize
CoUninitialize

msvcp140

?_Xlength_error@std@@YAXPEBD@Z

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__current_exception
__current_exception_context
memset
_CxxThrowException
strrchr
memmove
__std_exception_copy
__std_exception_destroy
memcpy
__C_specific_handler

api-ms-win-crt-heap-l1-1-0

malloc
_callnewh
free
calloc
_set_new_mode

api-ms-win-crt-convert-l1-1-0

wcstombs
wcstoul

api-ms-win-crt-string-l1-1-0

strncpy

api-ms-win-crt-runtime-l1-1-0

_exit
_seh_filter_exe
_initialize_onexit_table
_register_onexit_function
_c_exit
exit
terminate
_cexit
_initterm_e
_set_app_type
_initialize_narrow_environment
_register_thread_local_exe_atexit_callback
_crt_atexit
_initterm
_invalid_parameter_noinfo_noreturn
_get_narrow_winmain_command_line
_configure_narrow_argv

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x64/bass.dll
.dll windows:5 windows x64 arch:x64

Code Sign

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

31/01/2022, 16:17

Not After

28/01/2023, 16:17

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

ed:a5:49:9b:3e:77:ab:0f:4a:bf:11:62:bf:5c:68:6c:eb:19:9f:c5
Signer

Actual PE Digest

ed:a5:49:9b:3e:77:ab:0f:4a:bf:11:62:bf:5c:68:6c:eb:19:9f:c5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

BASS_Apply3D
BASS_ChannelBytes2Seconds
BASS_ChannelFlags
BASS_ChannelFree
BASS_ChannelGet3DAttributes
BASS_ChannelGet3DPosition
BASS_ChannelGetAttribute
BASS_ChannelGetAttributeEx
BASS_ChannelGetData
BASS_ChannelGetDevice
BASS_ChannelGetInfo
BASS_ChannelGetLength
BASS_ChannelGetLevel
BASS_ChannelGetLevelEx
BASS_ChannelGetPosition
BASS_ChannelGetTags
BASS_ChannelIsActive
BASS_ChannelIsSliding
BASS_ChannelLock
BASS_ChannelPause
BASS_ChannelPlay
BASS_ChannelRemoveDSP
BASS_ChannelRemoveFX
BASS_ChannelRemoveLink
BASS_ChannelRemoveSync
BASS_ChannelSeconds2Bytes
BASS_ChannelSet3DAttributes
BASS_ChannelSet3DPosition
BASS_ChannelSetAttribute
BASS_ChannelSetAttributeEx
BASS_ChannelSetDSP
BASS_ChannelSetDevice
BASS_ChannelSetFX
BASS_ChannelSetLink
BASS_ChannelSetPosition
BASS_ChannelSetSync
BASS_ChannelSlideAttribute
BASS_ChannelStart
BASS_ChannelStop
BASS_ChannelUpdate
BASS_ErrorGetCode
BASS_FXGetParameters
BASS_FXReset
BASS_FXSetParameters
BASS_FXSetPriority
BASS_Free
BASS_Get3DFactors
BASS_Get3DPosition
BASS_GetCPU
BASS_GetConfig
BASS_GetConfigPtr
BASS_GetDSoundObject
BASS_GetDevice
BASS_GetDeviceInfo
BASS_GetEAXParameters
BASS_GetInfo
BASS_GetVersion
BASS_GetVolume
BASS_Init
BASS_IsStarted
BASS_MusicFree
BASS_MusicLoad
BASS_Pause
BASS_PluginEnable
BASS_PluginFree
BASS_PluginGetInfo
BASS_PluginLoad
BASS_RecordFree
BASS_RecordGetDevice
BASS_RecordGetDeviceInfo
BASS_RecordGetInfo
BASS_RecordGetInput
BASS_RecordGetInputName
BASS_RecordInit
BASS_RecordSetDevice
BASS_RecordSetInput
BASS_RecordStart
BASS_SampleCreate
BASS_SampleFree
BASS_SampleGetChannel
BASS_SampleGetChannels
BASS_SampleGetData
BASS_SampleGetInfo
BASS_SampleLoad
BASS_SampleSetData
BASS_SampleSetInfo
BASS_SampleStop
BASS_Set3DFactors
BASS_Set3DPosition
BASS_SetConfig
BASS_SetConfigPtr
BASS_SetDevice
BASS_SetEAXParameters
BASS_SetVolume
BASS_Start
BASS_Stop
BASS_StreamCreate
BASS_StreamCreateFile
BASS_StreamCreateFileUser
BASS_StreamCreateURL
BASS_StreamFree
BASS_StreamGetFilePosition
BASS_StreamPutData
BASS_StreamPutFileData
BASS_Update
_

Sections

Size: 143KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
x64/bass_mpc.dll
.dll windows:5 windows x64 arch:x64

f9fd5b328cb929ebb59256d044e4de68

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

bass

BASS_GetVersion
BASS_GetConfig
_

kernel32

DisableThreadLibraryCalls
Sleep

user32

MessageBoxA

msvcrt

free
malloc
memmove
sprintf
_initterm
calloc
memcpy
memset
log10

Exports

Exports

BASS_MPC_StreamCreateFile
BASS_MPC_StreamCreateFileUser
BASS_MPC_StreamCreateURL
BASSplugin

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 632B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x64/bassflac.dll
.dll windows:5 windows x64 arch:x64

Code Sign

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

17/01/2023, 15:07

Not After

16/01/2026, 15:07

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

91:e5:39:c1:ea:bf:15:c5:17:95:e4:4a:51:82:c3:e0:16:bd:23:00
Signer

Actual PE Digest

91:e5:39:c1:ea:bf:15:c5:17:95:e4:4a:51:82:c3:e0:16:bd:23:00

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

bassflac.pdb

Exports

Exports

BASS_FLAC_StreamCreateFile
BASS_FLAC_StreamCreateFileUser
BASS_FLAC_StreamCreateURL
BASSplugin

Sections

Size: 31KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 981B - Virtual size: 981B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
x64/bassmidi.dll
.dll windows:5 windows x64 arch:x64

Code Sign

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

31/01/2022, 16:17

Not After

28/01/2023, 16:17

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

08:e1:f5:20:73:43:e0:26:31:de:7c:16:ce:18:b6:a8:be:bf:6d:37
Signer

Actual PE Digest

08:e1:f5:20:73:43:e0:26:31:de:7c:16:ce:18:b6:a8:be:bf:6d:37

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

BASS_MIDI_ConvertEvents
BASS_MIDI_FontCompact
BASS_MIDI_FontFlags
BASS_MIDI_FontFree
BASS_MIDI_FontGetInfo
BASS_MIDI_FontGetPreset
BASS_MIDI_FontGetPresets
BASS_MIDI_FontGetVolume
BASS_MIDI_FontInit
BASS_MIDI_FontInitUser
BASS_MIDI_FontLoad
BASS_MIDI_FontLoadEx
BASS_MIDI_FontPack
BASS_MIDI_FontSetVolume
BASS_MIDI_FontUnload
BASS_MIDI_FontUnpack
BASS_MIDI_GetVersion
BASS_MIDI_InFree
BASS_MIDI_InGetDeviceInfo
BASS_MIDI_InInit
BASS_MIDI_InStart
BASS_MIDI_InStop
BASS_MIDI_StreamCreate
BASS_MIDI_StreamCreateEvents
BASS_MIDI_StreamCreateFile
BASS_MIDI_StreamCreateFileUser
BASS_MIDI_StreamCreateURL
BASS_MIDI_StreamEvent
BASS_MIDI_StreamEvents
BASS_MIDI_StreamGetChannel
BASS_MIDI_StreamGetEvent
BASS_MIDI_StreamGetEvents
BASS_MIDI_StreamGetEventsEx
BASS_MIDI_StreamGetFonts
BASS_MIDI_StreamGetMark
BASS_MIDI_StreamGetMarks
BASS_MIDI_StreamGetPreset
BASS_MIDI_StreamLoadSamples
BASS_MIDI_StreamSetFilter
BASS_MIDI_StreamSetFonts
BASSplugin

Sections

Size: 67KB - Virtual size: 520KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
x64/bassopus.dll
.dll windows:5 windows x64 arch:x64

Code Sign

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

17/01/2023, 15:07

Not After

16/01/2026, 15:07

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

84:d8:4e:56:c3:45:ab:00:d6:44:95:28:cc:44:cf:6f:1c:5f:93:5b
Signer

Actual PE Digest

84:d8:4e:56:c3:45:ab:00:d6:44:95:28:cc:44:cf:6f:1c:5f:93:5b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

bassopus.pdb

Exports

Exports

BASS_OPUS_StreamCreate
BASS_OPUS_StreamCreateFile
BASS_OPUS_StreamCreateFileUser
BASS_OPUS_StreamCreateURL
BASS_OPUS_StreamPutData
BASSplugin

Sections

Size: 75KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
x64/basswv.dll
.dll windows:5 windows x64 arch:x64

Code Sign

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

17/01/2023, 15:07

Not After

16/01/2026, 15:07

Subject

CN=Un4seen Developments Ltd,O=Un4seen Developments Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

64:33:51:d3:c7:38:9f:08
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

24/06/2016, 20:44

Not After

24/06/2031, 20:44

Subject

CN=SSL.com Code Signing Intermediate CA RSA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

49:ee:3d:ca:f8:ba:40:e6:61:44:01:d7:9d:79:fe:a1:fe:9a:7b:16
Signer

Actual PE Digest

49:ee:3d:ca:f8:ba:40:e6:61:44:01:d7:9d:79:fe:a1:fe:9a:7b:16

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

basswv.pdb

Exports

Exports

BASS_WV_StreamCreateFile
BASS_WV_StreamCreateFileUser
BASS_WV_StreamCreateFileUserEx
BASS_WV_StreamCreateURL
BASSplugin

Sections

Size: 34KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 1012B - Virtual size: 1012B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
x64/foo_midi.dll
.dll windows:6 windows x64 arch:x64

96f5b127bf66768a5d5f4a5f72236357

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Peter\Code\C++\Media\foobar2000\foo_midi\x64\Release\foo_midi.pdb

Imports

shared

uReplaceCharAdd
uAppendMenu
uGetWindowText
??0uCallStackTracker@@QEAA@PEBD@Z
??1uCallStackTracker@@QEAA@XZ
uBugCheck
uFindFirstFile
stricmp_utf8_partial
uGetOpenFileName
uBrowseForFolder
uSendMessageText
uSetWindowText
?convert_from_int16@audio_math@@YAXPEBF_KPEANN@Z
?convert_from_int32@audio_math@@YAXPEBH_KPEANN@Z
GetInfiniteWaitEvent
stricmp_utf8
uSetDlgItemText
uExceptFilterProc
uPrintCrashInfo_OnEvent

bass

BASS_SetConfigPtr
BASS_ChannelSetAttribute
BASS_ChannelGetAttribute
BASS_PluginLoad
BASS_ErrorGetCode
BASS_ChannelGetData
BASS_StreamFree
BASS_Init
BASS_SetConfig

bassmidi

BASS_MIDI_StreamCreate
BASS_MIDI_StreamEvents
BASS_MIDI_FontSetVolume
BASS_MIDI_FontGetInfo
BASS_MIDI_FontFree
BASS_MIDI_FontInit
BASS_MIDI_FontGetPreset
BASS_MIDI_FontGetPresets
BASS_MIDI_StreamSetFonts

winmm

midiOutGetNumDevs
midiOutClose
midiOutGetErrorTextA
midiOutGetDevCapsW
midiOutLongMsg
midiOutShortMsg
midiOutPrepareHeader
midiOutOpen
midiOutReset
midiOutUnprepareHeader

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
OutputDebugStringW
MultiByteToWideChar
WideCharToMultiByte
RtlVirtualUnwind
ResumeThread
IsDebuggerPresent
GetSystemTimeAsFileTime
FormatMessageW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SleepConditionVariableSRW
WakeAllConditionVariable
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
DisableThreadLibraryCalls
InitializeSListHead
EncodePointer
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
InitOnceBeginInitialize
InitOnceComplete
VirtualAlloc
VirtualFree
LoadLibraryExA
Sleep
WriteFile
CancelIoEx
GetOverlappedResult
WaitForMultipleObjects
FormatMessageA
GetLastError
RaiseException
InitializeCriticalSectionEx
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
DecodePointer
GetCurrentThreadId
HeapAlloc
HeapFree
GetProcessHeap
SetLastError
InitializeCriticalSection
AcquireSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockShared
ReleaseSRWLockExclusive
FreeLibrary
SetDllDirectoryW
LoadLibraryW
GetProcAddress
DeleteFileA
MulDiv
GetTempPathA
GetTempFileNameA
CloseHandle
TerminateProcess
GetCurrentProcess
WaitForSingleObject
CreateEventW
CreateNamedPipeW
CreateFileW
DuplicateHandle
GetStdHandle
CreateProcessW
SetPriorityClass
GetPriorityClass
SetThreadPriority
GetThreadPriority
GetCurrentThread
ResetEvent
ReadFile

user32

SetDlgItemTextW
GetDlgItemInt
IsWindowEnabled
SetTimer
ShowWindow
CreateDialogParamW
GetDlgItem
GetWindowRect
SendDlgItemMessageW
GetDlgItemTextW
SendMessageW
DestroyWindow
SetWindowLongPtrW
UnregisterClassW
CreatePopupMenu
SetDlgItemInt
EnableWindow
TrackPopupMenu
DestroyMenu

ole32

CoUninitialize
CoInitialize
CoCreateGuid

msvcp140

?_Xbad_function_call@std@@YAXXZ
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
??Bid@locale@std@@QEAA_KXZ
?id@?$numpunct@D@std@@2V0locale@2@A
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
??0facet@locale@std@@IEAA@_K@Z
??1facet@locale@std@@MEAA@XZ
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Getlconv@_Locinfo@std@@QEBAPEBUlconv@@XZ
?_Getfalse@_Locinfo@std@@QEBAPEBDXZ
?_Gettrue@_Locinfo@std@@QEBAPEBDXZ
??0_Lockit@std@@QEAA@H@Z
??0_Locinfo@std@@QEAA@PEBD@Z
??1_Lockit@std@@QEAA@XZ
??1_Locinfo@std@@QEAA@XZ
?_Incref@facet@locale@std@@UEAAXXZ
?_Xout_of_range@std@@YAXPEBD@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ

shlwapi

PathIsDirectoryW

vcruntime140_1

__CxxFrameHandler4

vcruntime140

memmove
memset
_CxxThrowException
__current_exception_context
__current_exception
memcpy
memchr
wcsrchr
strchr
strstr
__C_specific_handler
strrchr
_purecall
__std_exception_copy
__std_terminate
memcmp
__std_type_info_destroy_list
__std_exception_destroy

api-ms-win-crt-heap-l1-1-0

realloc
free
malloc
_callnewh
calloc
_expand

api-ms-win-crt-runtime-l1-1-0

_initterm_e
terminate
_cexit
_wassert
_invalid_parameter_noinfo_noreturn
_beginthreadex
_initterm
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
abort
_errno

api-ms-win-crt-string-l1-1-0

_wcsicmp
tolower
strncat
strncpy
isalpha
strncmp
wcscat_s
isdigit
_stricmp
_strnicmp
_strdup
wcscpy_s
strcpy_s
strcmp

api-ms-win-crt-convert-l1-1-0

_wtof
_wtoi

api-ms-win-crt-stdio-l1-1-0

fseek
_wfopen_s
__stdio_common_vsprintf_s
fgets
feof
fclose
fwrite
ftell
__stdio_common_vsprintf
_wfopen
fopen
__stdio_common_vfprintf
__acrt_iob_func
puts
fopen_s
fread

api-ms-win-crt-math-l1-1-0

round
_ldsign
lroundf
trunc
_dsign
_fdsign
sqrt
ceilf
cos
cosf
expf
floor
floorf
fmod
fmodf
log
log10
log10f
logf
lrintf
pow
sin
sinf
exp

api-ms-win-crt-time-l1-1-0

_difftime64
_time64

api-ms-win-crt-utility-l1-1-0

rand
qsort
srand

Exports

Exports

foobar2000_get_interface

Sections

.text
Size: 855KB - Virtual size: 854KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Code Sign

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18Certificate

Extended Key Usages

Key Usages

64:33:51:d3:c7:38:9f:08Certificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

49:9c:77:14:4f:8a:4c:25:7a:74:34:5d:a5:86:3b:65:c3:03:b5:93Signer

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 123KB - Virtual size: 288KB

.rsrc Size: 1024B - Virtual size: 12KB

petite Size: 3KB - Virtual size: 3KB

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 18KB - Virtual size: 44KB

.rsrc Size: 1024B - Virtual size: 4KB

Size: - Virtual size: 4KB

petite Size: 777B - Virtual size: 777B

Code Sign

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ecCertificate

Extended Key Usages

Key Usages

64:33:51:d3:c7:38:9f:08Certificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

27:f4:35:69:c5:44:b3:65:5b:60:b3:60:04:0b:b5:dd:9f:4e:d9:12Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Exports

Exports

Sections

Size: 28KB - Virtual size: 52KB

.rsrc Size: 1024B - Virtual size: 8KB

petite Size: 845B - Virtual size: 845B

Code Sign

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18Certificate

Extended Key Usages

Key Usages

64:33:51:d3:c7:38:9f:08Certificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

71:1a:be:0f:4e:0f:08:06:7e:ec:f0:5b:54:f5:63:90:bb:ab:33:e8Signer

Headers

DLL Characteristics

File Characteristics

Exports

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18
Certificate

64:33:51:d3:c7:38:9f:08
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

49:9c:77:14:4f:8a:4c:25:7a:74:34:5d:a5:86:3b:65:c3:03:b5:93
Signer

.rsrc
Size: 1024B - Virtual size: 12KB

petite
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 4KB

petite
Size: 777B - Virtual size: 777B

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

64:33:51:d3:c7:38:9f:08
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

27:f4:35:69:c5:44:b3:65:5b:60:b3:60:04:0b:b5:dd:9f:4e:d9:12
Signer

.rsrc
Size: 1024B - Virtual size: 8KB

petite
Size: 845B - Virtual size: 845B

5c:9a:26:12:27:57:4c:26:b6:35:0a:6e:5e:00:26:18
Certificate

64:33:51:d3:c7:38:9f:08
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

71:1a:be:0f:4e:0f:08:06:7e:ec:f0:5b:54:f5:63:90:bb:ab:33:e8
Signer

.rsrc
Size: 1024B - Virtual size: 12KB

petite
Size: 1KB - Virtual size: 1KB

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

64:33:51:d3:c7:38:9f:08
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

ef:b6:45:96:55:48:ec:71:54:6c:cd:ec:dd:53:84:7c:8c:54:51:31
Signer

.rsrc
Size: 1024B - Virtual size: 8KB

petite
Size: 912B - Virtual size: 912B

44:f2:4b:dd:e5:36:80:9b:78:e9:0a:6f:55:46:d2:ec
Certificate

64:33:51:d3:c7:38:9f:08
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

c1:30:b5:7a:62:4c:82:6a:4f:fd:1e:70:34:05:2f:13:17:f9:b0:8e
Signer

.rsrc
Size: 1024B - Virtual size: 8KB

petite
Size: 876B - Virtual size: 876B