8e5eddb91ad926f3b7630933733529d607da0b6cca1e895ba26a2354f9f0a14b

Sharing

Copy URL Twitter E-mail

General

Target

8e5eddb91ad926f3b7630933733529d607da0b6cca1e895ba26a2354f9f0a14b
Size

1.0MB
MD5

73226ad3590c7f28c8139201d53ac32c
SHA1

f632205a68dd6e5cbaca9eac136cb098b66eca26
SHA256

8e5eddb91ad926f3b7630933733529d607da0b6cca1e895ba26a2354f9f0a14b
SHA512

98d863a699ac4e327a3c1870f9462501706aa443eae3dc78f130ad457cf9c0ca700522c8bbd54dee0cb7e7dd7aa993bdfb5e3208ac3dcc0f0255a8e13e1b7f14
SSDEEP

24576:i5eLvy0OU4Sk3Yxdy8o4cigC2L3rNQF+D7x0YPvEr0/nKj:i5eLJblk3P8o4cVC2/N/S4vKSq

Score

N/A

Malware Config

Signatures

Files

8e5eddb91ad926f3b7630933733529d607da0b6cca1e895ba26a2354f9f0a14b
.7z
HWMonitor 1.47 #soft8 病毒 0 (111.10.27)/HWMonitor_x32.exe
.exe windows x86

c11af13f443c8c505a9172b0f495377f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

advapi32

OpenProcessToken
RegDeleteValueW
RegSetValueExW
RegCreateKeyW
RegCloseKey
RegOpenKeyExW
RegQueryValueW
LookupPrivilegeValueA
CloseServiceHandle
CreateServiceW
DeleteService
OpenServiceA
StartServiceA
ControlService
OpenSCManagerA
RegQueryValueExA
RegOpenKeyExA
RegSetValueW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
SetFileSecurityW
GetFileSecurityW
RegCreateKeyExW
AdjustTokenPrivileges

kernel32

GetTempFileNameW
GetFullPathNameW
GetDiskFreeSpaceW
InterlockedIncrement
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GlobalFlags
lstrlenA
GetThreadLocale
FileTimeToSystemTime
SystemTimeToFileTime
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
MoveFileW
GetStringTypeExW
lstrcmpiW
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileW
GetVolumeInformationW
GetShortPathNameW
CreateFileW
FileTimeToLocalFileTime
GetFileAttributesExW
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetSystemDirectoryW
SetErrorMode
GetStartupInfoW
RaiseException
RtlUnwind
HeapAlloc
HeapReAlloc
ExitProcess
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
HeapDestroy
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetStdHandle
GetLocaleInfoA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetFileTime
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
CompareStringA
InterlockedExchange
GlobalGetAtomNameW
GetCurrentProcessId
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
lstrcmpW
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
MulDiv
CancelIo
ResetEvent
ReadFile
CreateEventA
SetEnvironmentVariableA
SetThreadAffinityMask
ResumeThread
QueryPerformanceFrequency
GetCurrentThread
GetPriorityClass
SetPriorityClass
GetThreadPriority
QueryPerformanceCounter
WriteConsoleA
GlobalMemoryStatus
VirtualAlloc
VirtualFree
GetTickCount
GetDiskFreeSpaceA
LocalAlloc
LocalFree
SetFilePointer
CreateDirectoryA
GetTempPathA
GetModuleHandleA
FindResourceA
GetWindowsDirectoryA
WriteFile
DeleteFileA
RemoveDirectoryA
GetComputerNameA
OpenMutexA
CreateMutexA
GetVersionExA
GetSystemInfo
LoadLibraryA
CreateFileA
DeviceIoControl
GetCurrentDirectoryA
GetModuleFileNameA
GetCurrentProcess
GetProcessHeap
HeapFree
WinExec
lstrcatW
lstrcpyW
lstrlenW
SetLastError
DeleteFileW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
SetCurrentDirectoryW
SetThreadPriority
ExitThread
Sleep
ReleaseMutex
GetComputerNameW
GetCurrentDirectoryW
CreateMutexW
GetModuleFileNameW
GetModuleHandleW
WaitForSingleObject
CreateThread
CloseHandle
InterlockedDecrement
LockResource
LoadLibraryW
FreeLibrary
SizeofResource
LoadResource
FindResourceW
GetProcAddress
WideCharToMultiByte
GetTempPathW
GetFileAttributesW
GetSystemWindowsDirectoryW
GetVersionExW
MultiByteToWideChar
GetLastError

user32

WindowFromPoint
IsZoomed
ShowOwnedPopups
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
UnpackDDElParam
ReuseDDElParam
LoadMenuW
DestroyMenu
GetActiveWindow
ReleaseCapture
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
SetRectEmpty
BringWindowToTop
GetDesktopWindow
TranslateAcceleratorW
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
SetRect
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
TrackPopupMenu
GetKeyState
SetScrollPos
GetScrollPos
SetForegroundWindow
IsWindowVisible
CharUpperW
DestroyIcon
UnregisterClassW
DeleteMenu
SystemParametersInfoW
GetMenuItemInfoW
LoadCursorW
IsDialogMessageW
GetSysColorBrush
PostMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
SetScrollInfo
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
IsWindow
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
wsprintfA
LoadImageW
CreateCursor
GetSystemMetrics
SetCursor
SetTimer
InflateRect
DrawFocusRect
GetSysColor
IsRectEmpty
CopyRect
KillTimer
SetWindowLongW
GetWindowRect
LoadBitmapW
MessageBoxW
UpdateWindow
InvalidateRect
ReleaseDC
GetDC
GetParent
SendMessageW
PtInRect
GetWindowLongW
GetClientRect
EnableWindow
SetMenu

gdi32

DeleteDC
CreatePatternBrush
GetTextMetricsW
GetBkColor
CreateSolidBrush
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateCompatibleDC
DeleteObject
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetClipBox
GetDeviceCaps
CreateFontIndirectW
GetStockObject
SetBkColor
SetTextColor
GetPixel
CreateBitmap
GetObjectW
CreateFontW
GetTextExtentPoint32W
BitBlt
CreateCompatibleBitmap

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

shell32

DragFinish
DragQueryFileW
ExtractIconW
SHGetFileInfoW
ShellExecuteW

shlwapi

PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathRemoveFileSpecW
PathIsUNCW

ole32

CoTaskMemFree
StringFromGUID2
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateInstance
CoUninitialize

oleaut32

SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantChangeType
VariantClear
VariantInit
SysStringLen
SafeArrayGetElemsize
SafeArrayGetElement
SafeArrayGetVartype

winmm

timeGetTime

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 552KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HWMonitor 1.47 #soft8 病毒 0 (111.10.27)/HWMonitor_x64.exe
.exe windows x64

46b4cf8381492ca14b0bf17ae9e94d18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

advapi32

OpenProcessToken
RegDeleteValueW
RegSetValueExW
RegCreateKeyW
RegCloseKey
RegOpenKeyExW
RegQueryValueW
LookupPrivilegeValueA
CloseServiceHandle
CreateServiceW
DeleteService
OpenServiceA
StartServiceA
ControlService
OpenSCManagerA
RegQueryValueExA
RegOpenKeyExA
RegSetValueW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
SetFileSecurityW
GetFileSecurityW
RegCreateKeyExW
AdjustTokenPrivileges

kernel32

EnterCriticalSection
InitializeCriticalSection
TlsAlloc
GlobalReAlloc
GlobalHandle
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GlobalFlags
lstrlenA
GetThreadLocale
FileTimeToSystemTime
SystemTimeToFileTime
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
MoveFileW
GetStringTypeExW
lstrcmpiW
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileW
GetVolumeInformationW
GetShortPathNameW
CreateFileW
FileTimeToLocalFileTime
GetFileAttributesExW
LocalFileTimeToFileTime
GetFileSizeEx
GetSystemDirectoryW
SetErrorMode
GetStartupInfoW
RaiseException
RtlPcToFileHeader
RtlLookupFunctionEntry
RtlUnwindEx
TlsGetValue
HeapReAlloc
ExitProcess
HeapSize
HeapQueryInformation
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
FlsAlloc
HeapSetInformation
HeapCreate
HeapDestroy
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetStdHandle
GetLocaleInfoA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
LeaveCriticalSection
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
CompareStringA
GlobalGetAtomNameW
GetCurrentProcessId
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
lstrcmpW
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
MulDiv
CancelIo
ResetEvent
ReadFile
CreateEventA
QueryPerformanceFrequency
QueryPerformanceCounter
SetEnvironmentVariableA
GetCurrentThread
SetThreadAffinityMask
ResumeThread
WriteConsoleA
GlobalMemoryStatus
VirtualAlloc
VirtualFree
GetTickCount
GetDiskFreeSpaceA
LocalAlloc
LocalFree
SetFilePointer
CreateDirectoryA
GetTempPathA
GetModuleHandleA
FindResourceA
GetWindowsDirectoryA
WriteFile
DeleteFileA
RemoveDirectoryA
GetComputerNameA
OpenMutexA
CreateMutexA
GetVersionExA
GetSystemInfo
LoadLibraryA
CreateFileA
DeviceIoControl
GetCurrentDirectoryA
GetModuleFileNameA
GetCurrentProcess
GetProcessHeap
HeapFree
WinExec
lstrcatW
lstrcpyW
lstrlenW
SetLastError
DeleteFileW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
SetCurrentDirectoryW
SetThreadPriority
ExitThread
Sleep
ReleaseMutex
GetComputerNameW
GetCurrentDirectoryW
CreateMutexW
GetModuleFileNameW
GetModuleHandleW
WaitForSingleObject
CreateThread
CloseHandle
LockResource
LoadLibraryW
FreeLibrary
SizeofResource
LoadResource
FindResourceW
GetProcAddress
WideCharToMultiByte
GetTempPathW
GetFileAttributesW
GetSystemWindowsDirectoryW
GetVersionExW
MultiByteToWideChar
GetLastError
HeapAlloc

user32

CharUpperW
SetRect
WindowFromPoint
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
UnpackDDElParam
ReuseDDElParam
LoadMenuW
DestroyMenu
GetActiveWindow
ReleaseCapture
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
SetRectEmpty
BringWindowToTop
GetDesktopWindow
TranslateAcceleratorW
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
DestroyIcon
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageA
SendDlgItemMessageW
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassNameW
GetClassLongPtrW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetWindowLongPtrW
SetWindowLongPtrW
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
TrackPopupMenu
GetKeyState
SetMenu
SetScrollPos
GetScrollPos
SetForegroundWindow
IsWindowVisible
UnregisterClassW
DeleteMenu
SystemParametersInfoW
GetMenuItemInfoW
LoadCursorW
GetSysColorBrush
IsZoomed
ShowOwnedPopups
PostMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
SetScrollInfo
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
IsWindow
GetMenuState
GetMenuStringW
InsertMenuW
GetMenuItemID
GetMenuItemCount
GetSubMenu
wsprintfA
LoadImageW
CreateCursor
GetSystemMetrics
SetCursor
SetTimer
InflateRect
DrawFocusRect
GetSysColor
IsRectEmpty
CopyRect
KillTimer
SetWindowLongW
GetWindowRect
LoadBitmapW
MessageBoxW
UpdateWindow
InvalidateRect
ReleaseDC
GetDC
GetParent
SendMessageW
PtInRect
GetWindowLongW
GetClientRect
EnableWindow

gdi32

DeleteDC
CreatePatternBrush
GetTextMetricsW
GetBkColor
CreateSolidBrush
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateCompatibleDC
DeleteObject
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetClipBox
GetDeviceCaps
CreateFontIndirectW
GetStockObject
SetBkColor
SetTextColor
GetPixel
CreateBitmap
GetObjectW
CreateFontW
GetTextExtentPoint32W
BitBlt
CreateCompatibleBitmap

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

shell32

DragFinish
DragQueryFileW
ExtractIconW
SHGetFileInfoW
ShellExecuteW

shlwapi

PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathRemoveFileSpecW
PathIsUNCW

ole32

CoTaskMemFree
StringFromGUID2
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateInstance
CoUninitialize

oleaut32

SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantChangeType
VariantClear
VariantInit
SysStringLen
SafeArrayGetElemsize
SafeArrayGetElement
SafeArrayGetVartype

winmm

timeGetTime

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 439KB - Virtual size: 439KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 552KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HWMonitor 1.47 #soft8 病毒 0 (111.10.27)/hwm_readme.txt
HWMonitor 1.47 #soft8 病毒 0 (111.10.27)/hwmonitorw.ini

Sharing

General

Malware Config

Signatures

Files

c11af13f443c8c505a9172b0f495377f

Headers

DLL Characteristics

File Characteristics

Imports

version

advapi32

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

shlwapi

ole32

oleaut32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 267KB - Virtual size: 267KB

.data Size: 136KB - Virtual size: 153KB

.rsrc Size: 552KB - Virtual size: 552KB

46b4cf8381492ca14b0bf17ae9e94d18

Headers

DLL Characteristics

File Characteristics

Imports

version

advapi32

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

shlwapi

ole32

oleaut32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 439KB - Virtual size: 439KB

.data Size: 172KB - Virtual size: 198KB

.pdata Size: 69KB - Virtual size: 69KB

.rsrc Size: 552KB - Virtual size: 552KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 267KB - Virtual size: 267KB

.data
Size: 136KB - Virtual size: 153KB

.rsrc
Size: 552KB - Virtual size: 552KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 439KB - Virtual size: 439KB

.data
Size: 172KB - Virtual size: 198KB

.pdata
Size: 69KB - Virtual size: 69KB

.rsrc
Size: 552KB - Virtual size: 552KB