| File Path | Type and Hashes |
|---|
| Match Rules |
|---|
| File Name: | AbletonLive9crackv304-64b.exe |
| File Type: | PE32 executable (console) Intel 80386, for MS Windows |
| SHA1: | 662188866d9d32daee5f4a119543c804db7c7516 |
| MD5: | 568d923735a79ff5d8942feb5b206ed7 |
| First Seen Date: | 2017-01-03 03:53:37.387365 ( ) |
| Number of Clients Seen: | 1 |
| Last Analysis Date: | 2017-01-03 03:53:37.387365 ( ) |
| Human Expert Analysis Date: | 2017-01-09 19:53:58.625401 ( ) |
| Human Expert Analysis Result: | Malware |
| Property | Value |
|---|---|
| number of sections | 7 |
| compilation time stamp | 0x586A4BC0 [Mon Jan 2 12:46:56 2017 UTC] |
| entry point | 0x4369e9 (.text) |
| machine type | Intel 386 or later - 32Bit |
| file size | 1531904 |
| sha256 | a870bcb39ed0c9d2528fefeb7b2837ffca5b0688e21364ff950e567024cc2085 |
| mime type | application/x-dosexec |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | MD5 |
|---|---|---|---|---|---|
| .text | 0x1000 | 0x57000 | 0x56200 | 6.782089 | - |
| .lomn | 0x58000 | 0x3000 | 0x2800 | 6.362475 | - |
| .rdata | 0x5b000 | 0x12000 | 0x11800 | 5.494551 | - |
| .data | 0x6d000 | 0x70000 | 0x6da00 | 3.709505 | - |
| .rsrc | 0xdd000 | 0x4000 | 0x3800 | 5.332891 | - |
| .reloc | 0xe1000 | 0x4000 | 0x3200 | 6.613247 | - |
| .glpoi | 0xe5000 | 0x97451 | 0x97600 | 0.022462[SUSPICIOUS] | - |
-
KERNEL32.dll
- TlsAlloc
- GetLastError
- InterlockedIncrement
- InterlockedExchange
- InterlockedDecrement
- DeleteCriticalSection
- EnterCriticalSection
- LeaveCriticalSection
- InitializeCriticalSectionAndSpinCount
- CloseHandle
- SetLastError
- GetProcAddress
- FreeConsole
- GetModuleHandleW
- TlsGetValue
- TlsSetValue
- TlsFree
- SetEvent
- HeapSize
- ReadConsoleW
- WriteConsoleW
- SetStdHandle
- SetEnvironmentVariableA
- FreeEnvironmentStringsW
- GetEnvironmentStringsW
- GetOEMCP
- IsValidCodePage
- FindNextFileA
- FindFirstFileExA
- FindClose
- WideCharToMultiByte
- EncodePointer
- DecodePointer
- MultiByteToWideChar
- CreateEventW
- GetSystemTimeAsFileTime
- CompareStringW
- LCMapStringW
- GetLocaleInfoW
- GetStringTypeW
- GetCPInfo
- LocalFree
- FormatMessageA
- InitializeSListHead
- ResetEvent
- WaitForSingleObjectEx
- UnhandledExceptionFilter
- SetUnhandledExceptionFilter
- GetCurrentProcess
- TerminateProcess
- IsProcessorFeaturePresent
- IsDebuggerPresent
- GetStartupInfoW
- QueryPerformanceCounter
- GetCurrentProcessId
- GetCurrentThreadId
- InterlockedPushEntrySList
- RaiseException
- RtlUnwind
- FreeLibrary
- LoadLibraryExW
- HeapAlloc
- HeapFree
- HeapReAlloc
- ExitProcess
- GetModuleHandleExW
- GetModuleFileNameA
- GetStdHandle
- WriteFile
- GetCommandLineA
- GetCommandLineW
- GetACP
- IsValidLocale
- GetUserDefaultLCID
- EnumSystemLocalesW
- GetFileType
- FlushFileBuffers
- GetConsoleCP
- GetConsoleMode
- ReadFile
- SetFilePointerEx
- GetProcessHeap
- CreateFileW
-
ole32.dll
- OleInitialize
-
WS2_32.dll
- WSACleanup
- WSAStartup
-
gdi32.dll
- AddFontMemResourceEx
- AddFontResourceA
- AddFontResourceExA
- AddFontResourceExW
- AddFontResourceTracking
- AddFontResourceW
- AngleArc
- AnimatePalette
- AnyLinkedFonts
- Arc
- ArcTo
- BRUSHOBJ_hGetColorTransform
- BRUSHOBJ_pvAllocRbrush
- BRUSHOBJ_pvGetRbrush
- BRUSHOBJ_ulGetBrushColor
- BeginGdiRendering
- BeginPath
- BitBlt
- CLIPOBJ_bEnum
- CLIPOBJ_cEnumStart
- CLIPOBJ_ppoGetPath
- CancelDC
- CheckColorsInGamut
- ChoosePixelFormat
- Chord
- ClearBitmapAttributes
- ClearBrushAttributes
- CloseEnhMetaFile
- CloseFigure
- CloseMetaFile
- ColorCorrectPalette
- ColorMatchToTarget
- CombineRgn
- CombineTransform
- ConfigureOPMProtectedOutput
- CopyEnhMetaFileA
- CopyEnhMetaFileW
RT_ICON
RT_GROUP_ICON
RT_MANIFEST