Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: 7c5469288bb85327c412fb55415dd003 --

Hashes
MD5: 7c5469288bb85327c412fb55415dd003
SHA1: 4756819079a995c679040c691e31ca9471a3e9e5
SHA256: af79266f42d486320f818206dc016ea3246595fdc7c69d4ad255195a5e90c315
SSDEEP: 3072:RRtEoO0f8hr4UAJ61zLryRQetBF3lhXi+AL:Rz8hsJIziOe7PC
Details
File Type: PE32
Yara Hits
YRP/PackerUPX_CompresorGratuito_wwwupxsourceforgenet | YRP/UPX_wwwupxsourceforgenet_additional | YRP/yodas_Protector_v1033_dllocx_Ashkbiz_Danehkar_h | YRP/UPX_290_LZMA | YRP/UPX_290_LZMA_Markus_Oberhumer_Laszlo_Molnar_John_Reiser | YRP/UPX_290_LZMA_additional | YRP/UPX_wwwupxsourceforgenet | YRP/UPXv20MarkusLaszloReiser | YRP/UPXV200V290MarkusOberhumerLaszloMolnarJohnReiser | YRP/UPX20030XMarkusOberhumerLaszloMolnarJohnReiser | YRP/UPX290LZMAMarkusOberhumerLaszloMolnarJohnReiser | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/UPX | YRP/suspicious_packer_section |
Parent Files
030195a56fca9ad8cbbc6f9c20949f39
Strings
		!This program cannot be run in DOS mode.
t ;t$$t
t(x1JS
A2$#"(
tAj	Wu
	_<}Wa
_fCRh{
GickxQ
Wy=Dj/
CH8My0
#t1	WR
::rQr$
G$4u4M
2=Z,+=[
B--b$7
QjN%SwVh<
je(l%y
?<#0!8
dl!OwI!9
!<X <x
Pq6jwM
t# tu	S
>7hX+AV
Nto %Q
-S!3OdH
K{!Wr$
*JL(?L
Dr2Hw!
N.<u!T
4AhiU<
jD5eVaWe
IT<1[p
:%k),j@j
TeKe'6U
A!`j@@M
>,|^2P
'^@[Er
E,lH-t
AL{6BHE!
@=!PFo
  $\@K|$
\!W,0W
DYH@W!$/
HwlC,i
T.?$0(.
Txx|\T.
ry$`L[
.xkp'ug
fvy(`qW[
:O(xW't?
-afM^R
CGs i+
%".dB.
Sj)9XV
Opn/6B2%
W&02]}h
aGYj0M
L45 'LP
FjGyW(0
0F '/l
*t$<|t </t
<?\<:t
}P>[8HN>T
9AALFn
|t(/t#\t
DS\M&V
:7:7<a	
Y0c!JC
WoIaQfwU
5=$]r)P
:`SgB$
a'MWO @h
bA95PY
YPHAO[
\t71h/*
	F qCN
g	#c,C
r=WmfX_#F
G94u	>
^!)$/q'
uOg" }e
xPW_SJL)
7PM89+
_'l+/y 
Guua7u&8$E
~7mC@G8-
;;YEjQ
Nw[bnd@^
+8 SsuO
,S'AwZ
6uyHn/
-[:>z.
TNS'{}
02epdGq
h7yZG{_
(\@P6* 
+)SlHbul9
N;w4eJ.S5p
~~t7te
k}R+y%)
C[hEHh?
IePZPL
>BOiRj
%Q,MrN]]f
^#[Gksu
lX0(R.
v+ngt=
H^00_T
h]>B>B
 Ydj@n
Eg@\`r
KGCymr<
0A-?$d
N$4/0h
O08O;Z
(48<\r
ptx|\r
\`dh\r
@/0.Blues/1.Classic
 Rock/2.Country/3.Dance/4iso
co/5.F0@6.Grg.7.Hio
p-Hop/8.Jazz/9.Metal
6eggab
Indus&i
L[xks>4
532y[33N
*8ospe`Bp0l
Bebobb6.L"7
ymph	#
`t969y
TNoT4g
"Fa]7fh
3BlsJThG
43Ddct
@tp://w
 vB^ftw
 hTbvgM
ORIGINALC
LICENSE AND DISCLAIMER
MENTBPd6
	&Lpnms
* Tc`68@o
\LO.txt
%d:%.2d
Qa?m8s)
/s~F3ff
pA#r3c[
	%8bDEC`
p5//aS
m>WreVBRHl/3
OqA\acmgSize
-syB(f
bCtrl+Z]F
pad.exeJz
A - Welv.
\LQs\d*.
SCROLLB
/cJirw{
bBa6d"o
	zTnorm=L>
t@tG{8
FAQ.htm
>> +	-
:M "jb
4\ns2O
cSPjgnL^,
Alwayt
qD9uFNx
hMp>V (
P9pZK0Qu 
-}d,Fr\t
Fwh`*`
&I"Uv'
F0qscx
a;mvAs
Fetc.)B
Zrn?,_cl
ld 33pm
;459(1.35x)
1 kHz^q
8I& toEx
X7kj78a
GBv"){
5*udyW
(+R-]c
)y+Vd]
nxeUBS&V
^w?R|Z)D0
ASDUTO
`mF9K}FRO
^I<vrusQ
	F11>d
Yscp)pF&
&hiB%Q4F8&
Ss?-ob
y:es*k*c
!237Unkn
type9*5
KSTRACK?
R@]iH]
p_8vLt
`;Rvgb t
hkx$G_
KU_-Ub
"5uFk`5e_
hEVo$yC
'R3Mix'?@
@>new'MTRH'A:
aK{s]D_
'4>IRt
50wMMX91:
6>Mvr;
" X('L
|XA;S<
k @Xkg
DLT\dl<
I'-tjK
'Zmmms+'
]'@hS;
'WOfskv&
@[mh+1
3;5E9h&"
]mKOC 
%b?1A=
C-/-b[=A
m["1A=
X_?@??=
^TPy0-
hO0]NQ
">)OQ&9
6lDHo9!g
Fx&:n?
'C;'CGH
6(l&yG4E
zW\gf?gMt
~Dgf\o
(0g	R\
Fg"G]KC
2O?<3m5Un$GG
ozf:g*r
{:s&)W:
h+7W!?n
%B-g?V
#?(/WX
R1#^Wm
qZi8q.
rK]K]z
oCW0@.r,	6
_rsW8l
ZowJfs*a
b/6OwTt
4bOHw9
&kR_MW
WNexHx
jCmA'WH
R^g10EA"
hrmpXn
DC&=Ou^
O`|Uav
m	N+SH
BoxY!BEb'T8
EmptyZ
DJa"G3
yeulkx
opup!l
I	Y%E#
; .bDj
XPTPSW
DDDDDDD
DHDHDHD
DHDHDHD
DHDHDHD
DHDHDHD
DHHHHHD
DDDDDDD
zzzzzzzzz
zzzzzzzzzzzzzzzzzzzzz
zzzzzz
zzzzzz
zzzzzzzzz
zzzzzz
zzzzzzzzzzzzzzz
zzzzzzzzzzzzzzzzzzzzzzzz
zzzzzzzzzzzzzzz
zzzzzzzzzp[
zzzzzzp[
,zzzzzzzzzzzzp[
e_1?3>
2!:::y
`&I&ix|BBBNFFFNvvvnRRRnll,
3/--mnnnn>
`vfnu(fW
0g)I!1
H)@=0C
wZ%	(i@IGj1+
OH&@HDlB
K>}9.y
wZWFw^Iw
rssGeG
TCt6Q$
}!>>~X
LC	sy2
ysUss3C
$!*o	R/
$3~R*"
Y#\z}p
A"?:;;=
O?jO4`
F@Y+B6*1
hAF.{&
(((8RTT
$jndk,
={vWUU1@V
:!HIFjM
pH:LT\\
v_z;0E
K6sAzz
;L?LLF
6dk{S!
t;6|o7
n8AG<&]
A*Etvvv|bbb4
%kW"i\&
K"P(#1
)a& <3
M>`i#Q
]K}WGU^
9snlll2
t>5'<_
DVF1O 
|ZL_LOO
d{p'Vu
yE}_+y
6mb7@f
}^?LZ)
q?q.8'
Egr=*	h
+//?[~
x@a&CQ
0y	MAQJ
sg#749N
)Ug}@D
#G^DJ^UXXX
$0Igk"
=)&FdM
<?xml version="1.0" encoding="utf-8" standalone="yes"?> 
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"> 
  <assemblyIdentity version="1.0.0.0" processorArchitecture="x86" name="mp3DirectCut" type="win32"/>
  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"> 
    <security> 
      <requestedPrivileges> 
        <requestedExecutionLevel level="asInvoker"/> 
      </requestedPrivileges> 
    </security> 
  </trustInfo> 
  <dependency>
    <dependentAssembly>
      <assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0"
            processorArchitecture="x86" publicKeyToken="6595b64144ccf1df" language="*"/>
    </dependentAssembly>
  </dependency>
</assembly>
KERNEL32.DLL
COMCTL32.DLL
COMDLG32.DLL
CRTDLL.DLL
GDI32.DLL
MSACM32.DLL
SHELL32.DLL
USER32.DLL
winmm.dll
LoadLibraryA
GetProcAddress
VirtualProtect
VirtualAlloc
VirtualFree
ExitProcess
InitCommonControls
ChooseColorA
BitBlt
acmStreamOpen
ShellExecuteW
waveInOpen