c53cdca62beef131773c4dac2201ada2bd7e3ee2670be7a891ad382e2aa8a030

Sharing

Copy URL

Twitter E-mail

General

Target

c53cdca62beef131773c4dac2201ada2bd7e3ee2670be7a891ad382e2aa8a030
Size

7.1MB
MD5

3be0c5999c106fc87718e30c03337f5c
SHA1

78b41358b27b6401badb5af5825e318d8368a78b
SHA256

c53cdca62beef131773c4dac2201ada2bd7e3ee2670be7a891ad382e2aa8a030
SHA512

623c01fa1a60e7d85abfcf6456a85ebc9132851cdb50aa8991c6dce697875512f01c8bd9369ad7f5ee2e0309435a12f52201d2b8fbebc558f67dd9d4cd408c64
SSDEEP

196608:SNGcQnEGqeI3ptfpqRXjfyjVJZ1y0ifSek55U:SdQn3IQXjfaZ1yBfv6S

Score

N/A

Malware Config

Signatures

Files

c53cdca62beef131773c4dac2201ada2bd7e3ee2670be7a891ad382e2aa8a030
.rar
1.BAT
3014acer.rom
AFUEFI.exe
HPUSBFW/DOS/COMMAND.COM
HPUSBFW/DOS/DRVSPACE.BIN
HPUSBFW/DOS/IO.SYS
HPUSBFW/DOS1/BIOS.rar
.rar
制作纯DOS启动U盘刷新BIOS/BIOS 刷新完成界面.jpg
制作纯DOS启动U盘刷新BIOS/DOS/COMMAND.COM
制作纯DOS启动U盘刷新BIOS/DOS/DRVSPACE.BIN
制作纯DOS启动U盘刷新BIOS/DOS/IO.SYS
制作纯DOS启动U盘刷新BIOS/HP优盘格式化工具HPUSBFW 2.20.exe
.exe windows x86

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

SetFilePointerEx
WriteFile
FindClose
FindFirstFileW
GetTickCount
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
GetFullPathNameW
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetVolumeInformationW
SetFileTime
GetFileSize
GetFileTime
SetFileAttributesW
FindNextFileW
CopyFileW
ReadFile
LoadResource
FindResourceW
SetVolumeMountPointW
GetVolumeNameForVolumeMountPointW
DefineDosDeviceW
GetLogicalDrives
Sleep
CreateThread
GetCommandLineW
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetStdHandle
GetOEMCP
GetACP
LoadLibraryA
InterlockedExchange
GetCPInfo
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
FlushFileBuffers
GetLogicalDriveStringsW
GetDriveTypeW
CreateFileW
GetLastError
DeviceIoControl
CloseHandle
FormatMessageW
LocalFree
OutputDebugStringW
LockResource
SetFilePointer
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RtlUnwind
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
TerminateProcess
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
VirtualProtect
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter

user32

PostMessageW
EndDialog
GetWindowTextW
GetWindowRect
SystemParametersInfoW
MoveWindow
GetSystemMenu
AppendMenuW
GetDlgItem
SetFocus
SetWindowTextW
EnableWindow
SendMessageW
LoadStringW
MessageBoxW
FindWindowW
SetForegroundWindow
DialogBoxParamW

advapi32

RegCloseKey
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc

ole32

CoInitializeEx
CoUninitialize

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SharedD
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
制作纯DOS启动U盘刷新BIOS/af10_bios/0NINA507.rom
制作纯DOS启动U盘刷新BIOS/af10_bios/AFUDOS.exe
制作纯DOS启动U盘刷新BIOS/af10_bios/af10.bat
制作纯DOS启动U盘刷新BIOS/使用说明.txt
HPUSBFW/DOS1/制作纯DOS启动U盘刷新BIOS/BIOS 刷新完成界面.jpg
HPUSBFW/DOS1/制作纯DOS启动U盘刷新BIOS/HP优盘格式化工具HPUSBFW 2.20.exe
.exe windows x86

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

SetFilePointerEx
WriteFile
FindClose
FindFirstFileW
GetTickCount
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
GetFullPathNameW
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetVolumeInformationW
SetFileTime
GetFileSize
GetFileTime
SetFileAttributesW
FindNextFileW
CopyFileW
ReadFile
LoadResource
FindResourceW
SetVolumeMountPointW
GetVolumeNameForVolumeMountPointW
DefineDosDeviceW
GetLogicalDrives
Sleep
CreateThread
GetCommandLineW
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetStdHandle
GetOEMCP
GetACP
LoadLibraryA
InterlockedExchange
GetCPInfo
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
FlushFileBuffers
GetLogicalDriveStringsW
GetDriveTypeW
CreateFileW
GetLastError
DeviceIoControl
CloseHandle
FormatMessageW
LocalFree
OutputDebugStringW
LockResource
SetFilePointer
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RtlUnwind
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
TerminateProcess
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
VirtualProtect
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter

user32

PostMessageW
EndDialog
GetWindowTextW
GetWindowRect
SystemParametersInfoW
MoveWindow
GetSystemMenu
AppendMenuW
GetDlgItem
SetFocus
SetWindowTextW
EnableWindow
SendMessageW
LoadStringW
MessageBoxW
FindWindowW
SetForegroundWindow
DialogBoxParamW

advapi32

RegCloseKey
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc

ole32

CoInitializeEx
CoUninitialize

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SharedD
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HPUSBFW/DOS1/制作纯DOS启动U盘刷新BIOS/af10_bios/0NINA507.rom
HPUSBFW/DOS1/制作纯DOS启动U盘刷新BIOS/af10_bios/AFUDOS.exe
HPUSBFW/DOS1/制作纯DOS启动U盘刷新BIOS/af10_bios/af10.bat
HPUSBFW/DOS1/制作纯DOS启动U盘刷新BIOS/使用说明.txt
HPUSBFW/HPUSBFW.exe
.exe windows x86

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

SetFilePointerEx
WriteFile
FindClose
FindFirstFileW
GetTickCount
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
GetFullPathNameW
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetVolumeInformationW
SetFileTime
GetFileSize
GetFileTime
SetFileAttributesW
FindNextFileW
CopyFileW
ReadFile
LoadResource
FindResourceW
SetVolumeMountPointW
GetVolumeNameForVolumeMountPointW
DefineDosDeviceW
GetLogicalDrives
Sleep
CreateThread
GetCommandLineW
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetStdHandle
GetOEMCP
GetACP
LoadLibraryA
InterlockedExchange
GetCPInfo
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
FlushFileBuffers
GetLogicalDriveStringsW
GetDriveTypeW
CreateFileW
GetLastError
DeviceIoControl
CloseHandle
FormatMessageW
LocalFree
OutputDebugStringW
LockResource
SetFilePointer
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RtlUnwind
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
TerminateProcess
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
VirtualProtect
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter

user32

PostMessageW
EndDialog
GetWindowTextW
GetWindowRect
SystemParametersInfoW
MoveWindow
GetSystemMenu
AppendMenuW
GetDlgItem
SetFocus
SetWindowTextW
EnableWindow
SendMessageW
LoadStringW
MessageBoxW
FindWindowW
SetForegroundWindow
DialogBoxParamW

advapi32

RegCloseKey
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc

ole32

CoInitializeEx
CoUninitialize

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SharedD
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
manual.docx
.docx office2007

Sharing

General

Malware Config

Signatures

Files

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

shell32

ole32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 14KB

.SharedD Size: 4KB - Virtual size: 4B

.rsrc Size: 16KB - Virtual size: 12KB

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

shell32

ole32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 14KB

.SharedD Size: 4KB - Virtual size: 4B

.rsrc Size: 16KB - Virtual size: 12KB

62aaaf892f2ed84f7da3b88008a9821b

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

shell32

ole32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 14KB

.SharedD Size: 4KB - Virtual size: 4B

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 14KB

.SharedD
Size: 4KB - Virtual size: 4B

.rsrc
Size: 16KB - Virtual size: 12KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 14KB

.SharedD
Size: 4KB - Virtual size: 4B

.rsrc
Size: 16KB - Virtual size: 12KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 14KB

.SharedD
Size: 4KB - Virtual size: 4B

.rsrc
Size: 52KB - Virtual size: 51KB