HPUSBDisk[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

HPUSBDisk.exe
Size

96KB
MD5

c0dee630f318aeefd8f36875f67d9cfe
SHA1

280298bcc4f6d2547babf36d8126cdef44fe4298
SHA256

bf0e4219c2c6a5cd4f82794e8584df147dce30a871d42d822354b61860efe4e6
SHA512

6514f2770d7d6b924ebca020fa1dd4dc75a327e313cd3bd24740332f28fed69b059aa514d35802977873de8eba7451284f3a7423e545e23616c58117a3727c3d
SSDEEP

1536:iPv2/81VWycatxB/UAoKtZFQhXWP27oE9svIonz+Ii+Zl9EiI:inRL9FEqp+Ii+Zl9+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HPUSBDisk.exe

Files

HPUSBDisk.exe
.exe windows x86

3b38bb7b84f12c096170d6f2115d3fd2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

CreateFileW
GetDriveTypeW
GetLogicalDriveStringsW
ReadFile
SetFilePointerEx
WriteFile
FindClose
FindFirstFileW
GetTickCount
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
GetFullPathNameW
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetVolumeInformationW
SetFileTime
GetFileSize
GetFileTime
SetFileAttributesW
GetLastError
CopyFileW
LockResource
LoadResource
FindResourceW
SetVolumeMountPointW
GetVolumeNameForVolumeMountPointW
DefineDosDeviceW
GetLogicalDrives
Sleep
CreateThread
GetCommandLineW
FlushFileBuffers
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetStdHandle
GetOEMCP
GetACP
LoadLibraryA
InterlockedExchange
GetStringTypeW
GetStringTypeA
GetCPInfo
GetLocaleInfoA
IsBadCodePtr
HeapSize
IsBadReadPtr
SetUnhandledExceptionFilter
SetFilePointer
DeviceIoControl
CloseHandle
FormatMessageW
LocalFree
OutputDebugStringW
FindNextFileW
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
RtlUnwind
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
VirtualProtect
GetSystemInfo
VirtualQuery
ExitProcess
TerminateProcess
GetStdHandle
GetModuleFileNameA

user32

wsprintfW
EndDialog
GetWindowTextW
GetWindowRect
SystemParametersInfoW
GetSystemMenu
AppendMenuW
GetDlgItem
MoveWindow
SetFocus
SetWindowTextW
EnableWindow
SendMessageW
LoadStringW
MessageBoxW
FindWindowW
SetForegroundWindow
DialogBoxParamW
PostMessageW

advapi32

FreeSid
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc

ole32

CoInitializeEx
CoUninitialize

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SharedD
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b38bb7b84f12c096170d6f2115d3fd2

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

shell32

ole32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 14KB

.SharedD Size: 4KB - Virtual size: 4B

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 14KB

.SharedD
Size: 4KB - Virtual size: 4B

.rsrc
Size: 16KB - Virtual size: 12KB