diskexplorer67[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

diskexplorer67.exe
Size

5.2MB
MD5

7b0d7825d8d75ac0f6f7303761204822
SHA1

973c91374ac58efc704306f292125db06042dc91
SHA256

c012e6d5e62b8f754446b69dbfbfcbea71759f01c5fe7ffd525630ab651c3221
SHA512

ede6a07356e660557f0ccd273989bb12d1a80a4467b1d08fb85b6eb649ea5b3c17f72d3a3ea34e8025dea4b0861af3d5c3188ed9bea5712a30d6b346951b2018
SSDEEP

98304:tP38L0HFVw4kYBoVaxLRgQx8S1nMU1jJ39bMclYvMYq:m0HFGSBTxVFhh/

Score

1^/10

Malware Config

Signatures

Files

diskexplorer67.exe
.exe windows x86

f61309ae7ca546a1c5f8c5086c0205bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLDownloadToFileA

winmm

timeGetTime
timeEndPeriod
timeBeginPeriod

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3

comctl32

ImageList_SetIconSize
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_Draw
ord17

version

VerQueryValueA

kernel32

GetModuleHandleA
GetModuleHandleW
GetPriorityClass
GetProcAddress
GetSystemDirectoryA
GetSystemInfo
GetSystemTime
GetTempPathA
GetThreadContext
GetThreadLocale
GetThreadPriority
GetVersionExA
GetVersionExW
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalUnlock
InterlockedDecrement
InterlockedIncrement
IsBadReadPtr
LoadLibraryExA
LoadResource
GetModuleFileNameW
LocalFree
LocalSize
LockResource
lstrcmpA
MapViewOfFile
MulDiv
MultiByteToWideChar
OpenFileMappingA
OpenProcess
QueryPerformanceFrequency
RaiseException
ReadFile
ReadProcessMemory
ReleaseMutex
RemoveDirectoryA
ResetEvent
ResumeThread
SetEndOfFile
SetEvent
SetFileAttributesA
SetFilePointer
SetLastError
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateProcess
TerminateThread
TlsGetValue
TlsSetValue
UnmapViewOfFile
VirtualAllocEx
VirtualFreeEx
VirtualProtect
VirtualQuery
WaitForSingleObject
WriteFile
GetStartupInfoA
GetModuleFileNameA
GetLocalTime
GetLocaleInfoA
GetLastError
GetFileTime
GetFileSize
GetFileAttributesA
GetDiskFreeSpaceA
GetComputerNameA
FreeResource
FreeLibrary
FormatMessageA
FindResourceA
FindNextFileA
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsA
ExitThread
ExitProcess
DuplicateHandle
DeleteFileA
DeleteCriticalSection
CreateThread
CreateRemoteThread
CreateProcessA
CreatePipe
CreateMutexA
CreateFileMappingA
CreateFileA
CreateEventA
CreateDirectoryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
IsValidCodePage
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
GetCPInfo
LocalAlloc

user32

IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxIndirectA
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
SendMessageA
SendMessageTimeoutA
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetPropA
SetRect
SetScrollInfo
SetTimer
SetWindowLongA
SetWindowPos
SetWindowRgn
SetWindowsHookExA
SetWindowTextA
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
WindowFromDC
WindowFromPoint
IsIconic
IsDialogMessageA
InvalidateRect
InflateRect
IsWindowVisible
GetWindowTextW
GetWindowTextLengthW
GetWindowTextA
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetScrollInfo
GetPropA
GetParent
GetMessageW
GetMessagePos
GetMessageA
GetMenuStringA
GetMenuItemRect
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetKeyState
GetIconInfo
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetCapture
GetActiveWindow
FrameRect
FindWindowExA
FindWindowA
FillRect
EnumWindows
EnumChildWindows
EnableMenuItem
EmptyClipboard
DrawTextA
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageA
DestroyWindow
DestroyIcon
DefWindowProcA
CreateWindowExA
CreateIconIndirect
CopyRect
CopyImage
CloseClipboard
ClientToScreen
CallWindowProcA
CallNextHookEx
GetDesktopWindow
GetWindowWord
IsWindowEnabled
GetWindowThreadProcessId
IsRectEmpty
EnableWindow
GetFocus

gdi32

EndDoc
ExcludeClipRect
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
CreatePen
CreatePalette
CreateHalftonePalette
EndPage
CreateFontIndirectW
CreateFontIndirectA
CreateFontA
GdiFlush
GetBitmapDimensionEx
GetClipBox
GetDeviceCaps
GetDIBits
GetNearestPaletteIndex
CreateDIBSection
GetPaletteEntries
GetPixel
GetStockObject
GetTextExtentPoint32A
CreateDIBitmap
GetTextFaceA
GetTextMetricsA
GetViewportOrgEx
IntersectClipRect
LineTo
MoveToEx
Polyline
RealizePalette
Rectangle
RectVisible
ResizePalette
RestoreDC
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetPaletteEntries
SetPixelV
SetROP2
SetStretchBltMode
SetTextColor
SetViewportOrgEx
StartDocA
StretchBlt
StretchDIBits
TextOutA
CreateDCA
CreateCompatibleBitmap
CreateCompatibleDC
GetObjectA
StartPage

comdlg32

GetOpenFileNameA
GetSaveFileNameA
PrintDlgA

advapi32

GetUserNameA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegDeleteValueA
RegEnumKeyA
RegQueryInfoKeyA
InitializeSecurityDescriptor
RegSetValueExA
SetSecurityDescriptorDacl

shell32

ShellExecuteA
SHFileOperationA

ole32

CoUninitialize
OleInitialize
OleUninitialize

oleaut32

SafeArrayCreate

ws2_32

socket
sendto
select
inet_addr
htons
gethostbyname
connect
WSAStartup
recvfrom
WSACleanup
closesocket

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls10
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zip67
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f61309ae7ca546a1c5f8c5086c0205bf

Headers

File Characteristics

Imports

urlmon

winmm

msvcrt

comctl32

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

ws2_32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 14.0MB

.tls10 Size: 8KB - Virtual size: 4KB

.rsrc Size: 172KB - Virtual size: 168KB

.zip67 Size: 2.7MB - Virtual size: 2.7MB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 14.0MB

.tls10
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 172KB - Virtual size: 168KB

.zip67
Size: 2.7MB - Virtual size: 2.7MB