LostMyPassword[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

LostMyPassword.exe
Size

600KB
MD5

5f3583d76b81f91d2f63813414cd5b47
SHA1

b719b80f990c091f0c2fb799a42ab656c930c8d0
SHA256

7da421d00cd50570a79a82803c170d043fa3b2253ae2f0697e103072c34d39f1
SHA512

f25ecb476054d49a3352ade610dc4899cc2886d93bda7580a580e2ccc03ebe8cfc49515c2f9cc61dc9718d5f76c1be39694530ffae27e383dc82c8c882d3248f
SSDEEP

6144:5Rrssu110MUWi77Xwtxv06ZWnKw79sHjWixxssWuAuSs0e2M8KvIkqOBRypAtgD+:5Rr+EMl86kKXHyiD3RAuSdezvIkeiv

Score

N/A

Malware Config

Signatures

Files

LostMyPassword.exe
.exe windows x64

afd1ea827e09162133fb1936031cdc40

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

wininet

FindCloseUrlCache
FindNextUrlCacheEntryW
FindFirstUrlCacheEntryW

comctl32

ImageList_Add
ImageList_SetImageCount
ImageList_AddMasked
CreateToolbarEx
CreateStatusWindowW
ord17
ImageList_ReplaceIcon
ImageList_Create

msvcrt

_cexit
_exit
_c_exit
_XcptFilter
__C_specific_handler
_onexit
__dllonexit
strftime
realloc
_gmtime64
qsort
_itow
strchr
_memicmp
_strlwr
_wcsupr
_wcslwr
memmove
exit
free
modf
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
wcstoul
malloc
??3@YAXPEAX@Z
??2@YAPEAX_K@Z
_wcsicmp
wcschr
wcsncmp
_wcsnicmp
_wtoi
_purecall
wcsrchr
_wtoi64
_snwprintf
wcsncat
_commode
_fmode
__set_app_type
memset
memcpy
memcmp

kernel32

FormatMessageA
LockFileEx
GetFullPathNameW
InitializeCriticalSection
EnterCriticalSection
GetFullPathNameA
GetDiskFreeSpaceW
GetTempPathA
GetSystemTime
AreFileApisANSI
CreateFileA
DeleteFileA
GetStartupInfoW
GetSystemTimeAsFileTime
UnlockFileEx
DeleteCriticalSection
FlushFileBuffers
GetFileAttributesExW
LockFile
UnlockFile
QueryPerformanceCounter
GetSystemInfo
GetFileAttributesA
LeaveCriticalSection
SetEndOfFile
GetDiskFreeSpaceA
FileTimeToSystemTime
SystemTimeToFileTime
CloseHandle
FileTimeToLocalFileTime
DeleteFileW
CopyFileW
LocalFree
CreateFileW
CompareFileTime
FreeLibrary
LoadLibraryW
GetProcAddress
GetLastError
GetModuleHandleW
MultiByteToWideChar
GetFileSize
GetTickCount
SetFilePointerEx
WideCharToMultiByte
ExpandEnvironmentStringsW
FormatMessageW
GetVersionExW
FindClose
FindFirstFileW
GetTimeFormatW
GetWindowsDirectoryW
SetFilePointer
GetFileAttributesW
lstrcpyW
WriteFile
ReadFile
GetModuleFileNameW
FindResourceW
LockResource
LoadResource
GlobalAlloc
SystemTimeToTzSpecificLocalTime
GetSystemDirectoryW
lstrlenW
LoadLibraryExW
GlobalUnlock
GetTempPathW
GetCurrentProcess
GetDateFormatW
FindNextFileW
GetTempFileNameW
SizeofResource
GlobalLock
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
DuplicateHandle
OpenProcess
GetCurrentProcessId
GetPrivateProfileStringW
WritePrivateProfileStringW
EnumResourceNamesW
GetPrivateProfileIntW
GetStdHandle
VirtualAllocEx
LocalAlloc
WaitForSingleObject
VirtualFreeEx
ReadProcessMemory
WriteProcessMemory
ResumeThread
SetErrorMode
ExitProcess
Process32NextW
CreateToolhelp32Snapshot
Process32FirstW
CreateRemoteThread
EnumResourceTypesW
Sleep

user32

PostQuitMessage
MonitorFromWindow
GetMonitorInfoW
DispatchMessageW
GetMessageW
TranslateMessage
IsDialogMessageW
TrackPopupMenu
RegisterWindowMessageW
GetKeyState
SetCursor
GetSysColorBrush
ShowWindow
ReleaseDC
ChildWindowFromPoint
LoadCursorW
GetDC
SetWindowTextW
InvalidateRect
UpdateWindow
SendMessageW
SetDlgItemTextW
GetDlgItemTextW
GetWindowRect
SetWindowLongPtrW
GetWindowPlacement
GetDlgItemInt
GetSystemMetrics
SetDlgItemInt
DeferWindowPos
BeginPaint
EndPaint
CreateWindowExW
GetClientRect
SetWindowPos
GetWindow
SendDlgItemMessageW
EndDialog
GetDlgItem
DrawFrameControl
GetForegroundWindow
LoadAcceleratorsW
DefWindowProcW
RegisterClassW
MessageBoxW
PostMessageW
SetMenu
TranslateAcceleratorW
LoadImageW
LoadIconW
GetSysColor
SetWindowLongW
GetWindowLongW
SetFocus
SetTimer
EndDeferWindowPos
KillTimer
GetParent
BeginDeferWindowPos
GetMenuItemCount
CheckMenuItem
GetMenuStringW
CloseClipboard
GetCursorPos
SetClipboardData
EnableWindow
MapWindowPoints
GetMenu
GetSubMenu
EmptyClipboard
EnableMenuItem
GetClassNameW
MoveWindow
OpenClipboard
GetDlgCtrlID
DestroyMenu
CreateDialogParamW
DialogBoxParamW
EnumChildWindows
LoadStringW
GetDesktopWindow
DestroyWindow
GetWindowTextW
LoadMenuW
ModifyMenuW
GetMenuItemInfoW
DrawTextExW

gdi32

GetStockObject
GetTextExtentPoint32W
CreateCompatibleDC
GetObjectW
DeleteDC
GetPixel
DeleteObject
SetPixel
SelectObject
CreateFontIndirectW
GetDeviceCaps
SetBkMode
SetTextColor
SetBkColor

comdlg32

FindTextW
GetSaveFileNameW

advapi32

OpenProcessToken
RegDeleteValueW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyW
RegQueryValueExW
GetTokenInformation
RegEnumKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegCloseKey

shell32

SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
ShellExecuteExW

ole32

CoTaskMemFree

Sections

.text
Size: 465KB - Virtual size: 464KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afd1ea827e09162133fb1936031cdc40

Headers

DLL Characteristics

File Characteristics

Imports

version

wininet

comctl32

msvcrt

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 465KB - Virtual size: 464KB

.rdata Size: 74KB - Virtual size: 74KB

.data Size: 8KB - Virtual size: 26KB

.pdata Size: 20KB - Virtual size: 19KB

.rsrc Size: 31KB - Virtual size: 31KB

.text
Size: 465KB - Virtual size: 464KB

.rdata
Size: 74KB - Virtual size: 74KB

.data
Size: 8KB - Virtual size: 26KB

.pdata
Size: 20KB - Virtual size: 19KB

.rsrc
Size: 31KB - Virtual size: 31KB