Autorun[.]exe[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Autorun.exe.zip
Size

231KB
MD5

243d2be97aa1084a737b8d3b9c2519e7
SHA1

253112fc7f5b5f1d0695e07501cf47d078ac59b9
SHA256

61dea6862f0e7c5f0c2c55283a468fd166e49a016a1c00085437213805eec118
SHA512

6f6d260886a80357ccf9eb5807937c8acc5b815d6304dbb063fac73c5d837b4bb0f2613196694f3d8b8927374b0ba42ec03808ef36891f61c304ca734cb77f00
SSDEEP

3072:8ANRIcfgsf4ieT+OPxvRzz4f9Y+mPrNaAwll0Y46zP5aJMl7K4Q8/uSMMHoMOLqT:8ANyc74yexsWBoAnYDeeM8F+OT

Score

1^/10

Malware Config

Signatures

Files

Autorun.exe.zip
.zip
Autorun.exe
.exe windows x86

ff5ed2ac3367e5811b5f936d467b1f40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
GetSidSubAuthority
InitializeSid
GetSidLengthRequired
EqualSid
IsValidSid
GetLengthSid
CopySid
InitializeSecurityDescriptor
MakeSelfRelativeSD
GetSecurityDescriptorLength
SetSecurityDescriptorDacl
SetSecurityDescriptorSacl
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
DeleteAce
MakeAbsoluteSD
GetAclInformation
InitializeAcl
AddAce
GetAce
AddAccessAllowedAce
CloseServiceHandle
OpenSCManagerW
OpenServiceW
ChangeServiceConfigW
ControlService

kernel32

GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
GlobalAddAtomW
Sleep
GetCommandLineW
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetStdHandle
GetLocaleInfoW
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
GetEnvironmentStrings
GetEnvironmentStringsW
lstrcatW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetTimeZoneInformation
HeapSize
HeapReAlloc
RaiseException
HeapAlloc
HeapFree
TerminateProcess
GetCurrentDirectoryA
RtlUnwind
ExitProcess
GetStartupInfoW
FormatMessageW
GetFileTime
GetFileSize
GetFileAttributesW
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetThreadLocale
SizeofResource
GetProcessVersion
WritePrivateProfileStringW
GlobalFlags
lstrcmpiW
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
lstrcpynW
InterlockedIncrement
InterlockedDecrement
LoadLibraryA
FreeLibrary
lstrlenA
MultiByteToWideChar
GetVersion
IsBadReadPtr
LoadLibraryExW
GetSystemDirectoryW
CreateProcessW
GetExitCodeProcess
FindResourceA
GlobalAddAtomA
GetProfileStringA
GlobalFindAtomW
GetModuleHandleW
MulDiv
GetModuleHandleA
GetProcAddress
SetLastError
GlobalUnlock
GlobalFree
LockResource
FindResourceW
LoadResource
WaitForSingleObject
CloseHandle
GetModuleFileNameW
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
InterlockedExchange
lstrcmpiA
lstrlenW
WideCharToMultiByte
GetCurrentThread
GetCurrentThreadId
GetVersionExW
GetCurrentDirectoryW
GetLastError
lstrcpyW
LCMapStringW

gdi32

CreateBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
LPtoDP
GetBkColor
GetTextColor
DPtoLP
CreateFontIndirectW
PatBlt
GetMapMode
GetObjectW
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateSolidBrush
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
DeleteObject
IntersectClipRect
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetBkMode
SetBkColor
RestoreDC
SaveDC
DeleteDC
SelectObject
GetStockObject
ExtTextOutA

user32

GetCapture
IsChild
GetTopWindow
CopyRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
SendDlgItemMessageW
UpdateWindow
IsDialogMessageW
SetWindowTextW
MoveWindow
ShowWindow
LoadStringW
DestroyMenu
WinHelpW
GetDesktopWindow
GetClassNameW
GetSysColorBrush
CharNextW
CopyAcceleratorTableW
SetRect
GetNextDlgGroupItem
MessageBeep
CharUpperW
RegisterClipboardFormatW
PostThreadMessageW
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
InflateRect
GetMenuItemID
CreateDialogIndirectParamW
DestroyWindow
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
GetFocus
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
LoadCursorW
LoadIconW
EnableWindow
GetWindowRect
SendMessageW
AppendMenuW
GetSystemMenu
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
PtInRect
PostQuitMessage
wsprintfW
InvalidateRect
DrawTextW
PostMessageW
SetCursor
MessageBoxW
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
CreateWindowExW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongW
RegisterWindowMessageW
OffsetRect
IntersectRect
SystemParametersInfoW
GetWindowPlacement
GrayStringW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
EndDialog
SetActiveWindow
IsWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongW

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

shell32

ShellExecuteExW

comctl32

ord17

oledlg

OleUIBusyW

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleIsCurrentClipboard
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
StgCreateDocfileOnILockBytes

olepro32

ord253

oleaut32

SysStringLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 228KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 588KB - Virtual size: 585KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
checksums.txt

Sharing

General

Malware Config

Signatures

Files

ff5ed2ac3367e5811b5f936d467b1f40

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

comdlg32

winspool.drv

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 228KB - Virtual size: 225KB

.data Size: 20KB - Virtual size: 37KB

.rsrc Size: 588KB - Virtual size: 585KB

.text
Size: 228KB - Virtual size: 225KB

.data
Size: 20KB - Virtual size: 37KB

.rsrc
Size: 588KB - Virtual size: 585KB