Sample details: 33e2ec919eb0ca5f0dcf4a6aa8c615a1 --

Hashes
MD5: 33e2ec919eb0ca5f0dcf4a6aa8c615a1
SHA1: a4e8d3483bba97b0f326f616176b16a72ce961f9
SHA256: 3de990b9aed273066287da42a51816b96d8d19cf169f8f2a4fdffb3d3fa4379c
SSDEEP: 3072:fhpsBIyrrWgc8sks1cR32x8eryRQetBF3lhX5Tih:paLfcAkG881Oe7G
Details
File Type: PE32
Yara Hits
YRP/PackerUPX_CompresorGratuito_wwwupxsourceforgenet | YRP/UPX_wwwupxsourceforgenet_additional | YRP/yodas_Protector_v1033_dllocx_Ashkbiz_Danehkar_h | YRP/UPX_290_LZMA | YRP/UPX_290_LZMA_Markus_Oberhumer_Laszlo_Molnar_John_Reiser | YRP/UPX_290_LZMA_additional | YRP/UPX_wwwupxsourceforgenet | YRP/UPXv20MarkusLaszloReiser | YRP/UPXV200V290MarkusOberhumerLaszloMolnarJohnReiser | YRP/UPX20030XMarkusOberhumerLaszloMolnarJohnReiser | YRP/UPX290LZMAMarkusOberhumerLaszloMolnarJohnReiser | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/screenshot | YRP/UPX | YRP/suspicious_packer_section |
Parent Files
7159533de29017dca87f100f31d625bd
Strings
		!This program cannot be run in DOS mode.
t ;t$$t
t(x1JS
KF.i$GGKd
KOOWP.
G]Vo:K
4<zf"_&
 tJ|r=XnV
t	|R=cNuK]
]7&4Wj0*H
=P>v	j
WRVph-
T +?$OJ
<e6T#9
nZ+Z+|
1R8Hdt
ww]Gf=m?zs
Kf&^SA
Ckhw%Xhr
"8%v[w
u-RFN?(
s S[/i
2H``]d8JU
BRhD)D
 7o;p[
}@^jq+
:YdZ#-\<
O;3U%&
5>NG87
l*OOVHS9
PyiZP.U
?Z&/#+
>]P!`!LC
C:|j0Mf8
LHh(#6h
&\T*Ch\
5HfiqZ
Nhx=P%
v#hD	H<
+;x5L&p
@N^rpl
CS=j.m
<*t$<|t </t
<?\<:t
Sb=5IS
>`S\l 
r||n@@e
PXN^sW
 mI{)l
PE}Ns`v+
4i''6w
X&SMo%-
K+`lX!
i%z[e`
rSbWPe 
QrO}[B(96
?^d"9v6
	ufj	P
(G+e=Q
IRi.m<\
3EjI]}
`U,;%M
ux/V#r
ah<?_b
	H	*kEs
=?E|Z#
}(Q]r.
}#\Va3
Sfx dQ[l
 1<35h
lls3pA.
XEQTh0D
Vo!CE'
h-XgVm
qa;T#K
{aYr*xC-
D0P[s7
Ick4PR9
v(ipPC
ar6q*y
OSnGW2
pkCA={
pg8'"6"
S8Zh3u
	4He@v
z(Y,LT.]V0
T.{XV\/
T.r0l4.
?A8ye1
aI9eGM
%&g"d'
v3\Y86
9 6k@SD
R\Ou3Y(K.
U[u)|W
'd !MSP
d0y@EtT
k2(QJGNu
__Z&6E4	I|
/Ix1%#Y
<AfJ_ t
|6ht$hjR
tDMC4c	A
Pt1"Pt
O$l!_8
q%\c(D
S9dVD7
g@S}gh
r2}?=@A
  $<HK|$
e@F*7:
}@QOuh
ehuG}x
\!,0!W
\<@\!W
O:$-{_
\MMlhGx'
>@x!Q#C_
5$	u8w
E0@+|m
=CEIg+
$;=br	
^V% T%>
}7!I1F
G;P{	;
C~Me@6
p($"EA
#Vk?X2
'Ux)a>!
/mo`sv
qk&v+jV)N[
:R(S.j
9HASHdY)
8O/"iu
gZ]FL"
:ydaC&
*{N2UM
8"/dGg
'EZ99:.1
u@CQet
I$By-:
Whm4	q
v8;uyo	
HfKQ=9
EZx`!'Yh
J;P^E,
!E2DSC\
56NSn]
aI3m0p|
>0(kpE
}~N\i#(
"ZKn9Y
rDp!}C}G2
hMHcWK
7qJMb%
"A4;-MhJ
5=c-a0
1V4H-4J 'Gt
Bl	_v(?
>{!,@e
*4QYPU
NB."5|
Zt1+u/
@0`I*O0
Wa '.-
%<TO5|.F 
Lo?7XZ
~]Et$ft
dhlp\r
PTX\\r
>Stereo
oint 3MonK
Normal quity;LowS
5<HighV/8
y hE'V@ce' ~
(ABR / 56
m);C(- C	
;VariableA
s**.mp3F
default, 
A6tOW8
^DirectCut u]
ation d
a succVsfu8yo
 ^moved6rom thepser `
Y. ToC 
Y-]'s4,Vp
8LACM 
CMaxX Ua
okbps,
R-0  p{
	KB u-
)A.22=P
cnknow
n type9*5*u
2dShee/cue
+2.1f dB
r e%<Past
" /clipboa~zM
8xiRb2a
nWsK_titl=Lo
PERFORM
(Track
STRACK?
UDIO&FI
%W'mnhod%
o'chan\ls!
<workgk
LnoWew'
#5H_<GV
YusP#dT
NOpen=*
"N/F W
TAG] 8
r!b/Info 
oV-sync
5(Y%s%O
n PjchA%,
f'zD%4
j,jm Xgth oB
 abo ed
 exJs2
3}< x$LC D
Pjg@dh
IMPORT
Alwayt
[O%DN1
a(2/`]
:| ()O
oY?Os]
MSVC90
 UNICODEf<U
~SHEETSDP
vVSIRex)
@g@UTF-8'G
ATCH PROCES
4O{gS+
nCFpta5
*l$P{-
 GRAPH
 bNCC8
etc.)f
[DDurn?,]
ld 33pml
459(1.35x)
0.5-2.0B$
WGBe8@
U[sI,;
,yuO	Oj
T:tF[? t
UbCA_3
t+R-]c
a5L*^T
	ReUBS]y
,/.:Sf,B
zeu^ju
q"|+HZ
k`TOF9K)
FROM E
BEGINNx
nU/<De
f)czZo
@xpKP.
PHw/&8&B
S==&?`AbK
M(VU)kt&
2^5o	F
6t"Two-v
SCROLLBAR
TATIC#/pY
[,M #b=
?78.0X
t/0.B;	
try/3.D
o/5.F0@6.Gr
g.7.Hip-Hop/8.Jazz/9.Me
6eggab
Mu/784
bobb6.L"zMpx
QTNoT4
Lg/5VV
3Z INJ
<tp://w
Z` QO)5
LICENSE
DISCLAIxAnj
MENTBy
P@6al3@c
N$@_pAS[f
dwDeHg|(7
y(8L`py
<@HP\h
H^A@FW
XE[VDlE
'i9X[-
Y\bk[(
Zc'm[[
f's*'v
'yVs)2
yW#']j
I'oEhcq
[Km's+'
'sM[mm+'W
m3;5E3
`661N?
C-=Av[
-;:!$V
bOH5;5EZ
W/	j^c
0]NQO,
&nbcgP
?Q9m[l
cW)O&)
NQMLul
>$Fx&:
(l6arr
2_?[MU
ozf:g*r-Q
R+p#kxop
S"	-zs
kz+6)o
W!?hZX
sF TL6
,6^wxr
wr 15b)
7(7xnf
J-5'zm
{R7*8WO\]
*V7L	'
p.^Tco.m
*qtf[Cs6
o;sxo` 
Hd@""V_
o70y.h
WNex=`
7&ul\m
6+WkPT<
w.v_TObj
f0li+p
Dlg6tO{
hrmpX{
0xixetRTo=
vpE7vp
gDC&=Ou^
eRx@`m
7W[l{f+BoxY!B
)6#$=9
WVdrDs
!-IcO+d
GZ?89!
i5sp<G
.tnJ<d
XPTPSW
DDDDDDD
DHDHDHD
DHDHDHD
DHDHDHD
DHDHDHD
DHHHHHD
DDDDDDD
zzzzzzzzz
zzzzzzzzzzzzzzzzzzzzz
zzzzzz
zzzzzz
zzzzzzzzz
zzzzzz
zzzzzzzzzzzzzzz
zzzzzzzzzzzzzzzzzzzzzzzz
zzzzzzzzzzzzzzz
zzzzzzzzzp[
zzzzzzp[
,zzzzzzzzzzzzp[
e_1?3>
2!:::y
`&I&ix|BBBNFFFNvvvnRRRnll,
3/--mnnnn>
`vfnu(fW
0g)I!1
H)@=0C
wZ%	(i@IGj1+
OH&@HDlB
K>}9.y
wZWFw^Iw
rssGeG
TCt6Q$
}!>>~X
LC	sy2
ysUss3C
$!*o	R/
$3~R*"
Y#\z}p
A"?:;;=
O?jO4`
F@Y+B6*1
hAF.{&
(((8RTT
$jndk,
={vWUU1@V
:!HIFjM
pH:LT\\
v_z;0E
K6sAzz
;L?LLF
6dk{S!
t;6|o7
n8AG<&]
A*Etvvv|bbb4
%kW"i\&
K"P(#1
)a& <3
M>`i#Q
]K}WGU^
9snlll2
t>5'<_
DVF1O 
|ZL_LOO
d{p'Vu
yE}_+y
6mb7@f
}^?LZ)
q?q.8'
Egr=*	h
+//?[~
x@a&CQ
0y	MAQJ
sg#749N
)Ug}@D
#G^DJ^UXXX
$0Igk"
=)&FdM
			]>>>
			|			|			|			|			|			|			|			{			r
<?xml version="1.0" encoding="utf-8" standalone="yes"?> 
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"> 
  <assemblyIdentity version="1.0.0.0" processorArchitecture="x86" name="mp3DirectCut" type="win32"/>
  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"> 
    <security> 
      <requestedPrivileges> 
        <requestedExecutionLevel level="asInvoker"/> 
      </requestedPrivileges> 
    </security> 
  </trustInfo> 
  <dependency>
    <dependentAssembly>
      <assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0"
            processorArchitecture="x86" publicKeyToken="6595b64144ccf1df" language="*"/>
    </dependentAssembly>
  </dependency>
</assembly>
KERNEL32.DLL
COMCTL32.DLL
COMDLG32.DLL
CRTDLL.DLL
GDI32.DLL
MSACM32.DLL
SHELL32.DLL
USER32.DLL
winmm.dll
LoadLibraryA
GetProcAddress
VirtualProtect
VirtualAlloc
VirtualFree
ExitProcess
InitCommonControls
ChooseColorA
BitBlt
acmStreamOpen
ShellExecuteW
waveInOpen