2024-05-10_06e1c2c867b1cb6c8caefe1bae029d46_avoslocker

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-10_06e1c2c867b1cb6c8caefe1bae029d46_avoslocker
Size

2.0MB
MD5

06e1c2c867b1cb6c8caefe1bae029d46
SHA1

8c2c47185825e659ad19a28be0d667d57d5b053e
SHA256

f7fcfd798bebcb0f7d253a3f9c917a3960c23b1a38c3c09bc0a65bf68b905d84
SHA512

f00c8c2bdaeb909f08fc271280183b3caaebbdd04f869772ed0037ab49ed7d8d1a1f0e9088ce381a7ab77d1670a55fa76c72dde38337ad7dc7c8b31143d7c410
SSDEEP

49152:AHpIgZp/NRjPApZHQhrM+j8J4TnF6igxz1DLdzuG6:SIgZp/nKHQhOGbF6iqzPu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-10_06e1c2c867b1cb6c8caefe1bae029d46_avoslocker

Files

2024-05-10_06e1c2c867b1cb6c8caefe1bae029d46_avoslocker
.exe windows:6 windows x86 arch:x86

ba6a717bf07719dd53c22d5caf725c19

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindFirstFileExW
GetStringTypeW
SetStdHandle
GetConsoleOutputCP
SetEnvironmentVariableW
ReadConsoleW
GetConsoleMode
SetFilePointerEx
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
SleepConditionVariableSRW
HeapQueryInformation
CreateDirectoryW
ExitProcess
GetCPInfo
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetDriveTypeW
GetCommandLineW
GetCommandLineA
MoveFileExW
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
RtlUnwind
RaiseException
OutputDebugStringW
GetSystemTimeAsFileTime
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FindResourceExW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SystemTimeToTzSpecificLocalTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GetThreadLocale
GetStringTypeExW
lstrcmpiW
SetErrorMode
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
FlushFileBuffers
DeleteFileW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetTickCount64
CompareStringA
lstrcmpA
GetCurrentThread
FileTimeToSystemTime
VirtualProtect
GetUserDefaultLCID
GetFullPathNameW
GetFileTime
GetFileAttributesW
GetVersionExW
GlobalGetAtomNameW
CompareStringW
lstrcmpW
GlobalDeleteAtom
LoadLibraryA
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
GetCurrentThreadId
CopyFileW
LocalFree
GlobalSize
GetModuleHandleW
GetModuleHandleA
InitializeCriticalSectionAndSpinCount
SetLastError
OutputDebugStringA
GetACP
GetShortPathNameW
lstrlenW
ReadFile
GetFileSize
CreateFileW
FreeLibrary
GetProcAddress
LoadLibraryW
SetThreadPriority
GetProcessHeap
DecodePointer
HeapAlloc
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
GetProfileIntW
QueryPerformanceCounter
GetCurrentProcessId
GetTempPathW
GetModuleFileNameW
GetCurrentDirectoryW
SetCurrentDirectoryW
CreateProcessW
GlobalAddAtomW
GlobalFindAtomW
QueryPerformanceFrequency
CreateMutexW
ReleaseMutex
FindClose
FindNextFileW
FindFirstFileW
MulDiv
GlobalFree
GetLastError
FormatMessageW
ResumeThread
GetTickCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
CloseHandle
WaitForSingleObject
Sleep
GlobalUnlock
GlobalLock
GlobalAlloc
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
GetStdHandle
SizeofResource
WriteConsoleW

user32

PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
IsDialogMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetActiveWindow
GetDlgItem
EndDialog
CreateDialogIndirectParamW
GetMenuStringW
GetLastActivePopup
GetWindowThreadProcessId
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
UnhookWindowsHookEx
SetRectEmpty
SendDlgItemMessageA
GetTopWindow
DrawStateW
DrawFrameControl
DestroyWindow
ShowWindow
MoveWindow
SetWindowPos
GetTabbedTextExtentW
mouse_event
GetDesktopWindow
CreateWindowExW
RegisterClassW
GetCapture
ValidateRect
GetMenuItemInfoW
GetDlgCtrlID
IsWindowEnabled
SetForegroundWindow
GetDoubleClickTime
ShowCaret
SetCaretBlinkTime
CreateCaret
DestroyCaret
HideCaret
SetCaretPos
FrameRect
InvertRect
GetCaretPos
RegisterClipboardFormatW
GetCaretBlinkTime
CreateCursor
EnableScrollBar
ShowScrollBar
keybd_event
SendInput
RealChildWindowFromPoint
GetClipboardData
IsClipboardFormatAvailable
UnregisterClassW
FlashWindow
UpdateWindow
wsprintfW
GetDCEx
ReleaseCapture
SetCapture
GetClassLongW
OffsetRect
IsRectEmpty
EndDeferWindowPos
BeginDeferWindowPos
GetSysColorBrush
MapVirtualKeyW
VkKeyScanW
GetClientRect
GetWindowRect
TranslateAcceleratorW
IsWindowVisible
LoadIconW
FillRect
LoadCursorW
DefWindowProcW
GetClassInfoW
SetCursorPos
LockWindowUpdate
AppendMenuW
CreatePopupMenu
GetCursorPos
ShowWindowAsync
PtInRect
GetActiveWindow
ModifyMenuW
GetMenuState
SetWindowsHookExW
CallNextHookEx
RegisterWindowMessageW
GetMessagePos
GetMessageTime
GetClassInfoExW
IsMenu
IsChild
DeferWindowPos
GetMenuItemID
GetMenuItemCount
DestroyAcceleratorTable
GetMenu
SetMenu
PostThreadMessageW
LoadBitmapW
EnableWindow
GetKeyState
PostMessageW
GetParent
GetNextDlgTabItem
IsWindow
IsIconic
SetTimer
KillTimer
GetAsyncKeyState
CallWindowProcW
GetWindowLongW
SetWindowLongW
ClientToScreen
ScreenToClient
RedrawWindow
SetFocus
LoadMenuW
GetSubMenu
ChildWindowFromPoint
SendMessageW
GetSystemMetrics
MessageBeep
GetDC
ReleaseDC
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
CopyRect
DrawEdge
InflateRect
GetSysColor
InvalidateRect
MessageBoxW
GetFocus
GetWindow
SetCursor
MapWindowPoints
EnableMenuItem
InsertMenuW
SystemParametersInfoW
FindWindowExW
IsZoomed
CreateAcceleratorTableW
CharUpperW
ShowOwnedPopups
PostQuitMessage
MonitorFromPoint
SetParent
DeleteMenu
GetSystemMenu
SetRect
WindowFromPoint
MapDialogRect
DestroyCursor
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
ReuseDDElParam
UnpackDDElParam
DestroyIcon
IntersectRect
InsertMenuItemW
DestroyMenu
TrackPopupMenu
BringWindowToTop
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetClassNameW
EqualRect
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
GetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
GetForegroundWindow
GetMessageExtraInfo
LoadAcceleratorsW

gdi32

SetMapMode
SelectObject
StartDocW
TextOutW
EndPage
StartPage
MoveToEx
LineTo
EndDoc
GetCharWidth32W
GetTextExtentPoint32W
GetStockObject
SetBkMode
Rectangle
SetTextColor
CreateBitmapIndirect
CreateBitmap
CopyMetaFileW
CreatePatternBrush
CreateRectRgn
Escape
ExcludeClipRect
GetClipBox
GetPixel
IntersectClipRect
PtVisible
RestoreDC
SaveDC
SelectClipRgn
DeleteObject
SetLayout
GetLayout
SetPolyFillMode
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
CombineRgn
SetRectRgn
DPtoLP
CreateFontW
GetCharWidthW
StretchDIBits
EnumFontFamiliesExW
CreateSolidBrush
GetGlyphOutlineW
SetPixel
CreateFontIndirectW
GetBkColor
Polyline
CreatePen
GetDeviceCaps
GetTextColor
PatBlt
GetObjectW
DeleteDC
CreateDCW
Polygon
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
RectVisible
ExtTextOutW
GetTextMetricsW
SetBkColor

comdlg32

GetOpenFileNameW
GetFileTitleW
PrintDlgW
GetSaveFileNameW

winspool.drv

OpenPrinterW
ClosePrinter
GetPrinterW
EnumPrintersW
DocumentPropertiesW

advapi32

RegQueryValueExW
RegQueryValueW
RegCloseKey
RegEnumKeyExW
RegEnumValueW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyW
RegSetValueW

shell32

DragAcceptFiles
SHGetMalloc
SHBrowseForFolderW
SHGetPathFromIDListW
DragQueryFileW
DragFinish
ExtractIconW
SHAddToRecentDocs
SHGetFileInfoW
ShellExecuteW

comctl32

ImageList_ReplaceIcon

shlwapi

PathRemoveExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW

uxtheme

DrawThemeParentBackground
IsAppThemed
IsThemeBackgroundPartiallyTransparent
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize

ole32

RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoCreateGuid
OleIsCurrentClipboard
ReleaseStgMedium
OleDuplicateData
RevokeDragDrop
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CoUninitialize
CoCreateInstance
CoInitialize
CreateStreamOnHGlobal
DoDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
OleFlushClipboard
CoInitializeEx

oleaut32

SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString

oledlg

OleUIBusyW

oleacc

LresultFromObject
CreateStdAccessibleObject

imm32

ImmSetCompositionFontW
ImmReleaseContext
ImmGetOpenStatus
ImmSetOpenStatus
ImmSetCompositionWindow
ImmGetCompositionStringW
ImmNotifyIME
ImmGetContext

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 350KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba6a717bf07719dd53c22d5caf725c19

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

oleacc

imm32

version

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 350KB - Virtual size: 350KB

.data Size: 19KB - Virtual size: 60KB

.rsrc Size: 92KB - Virtual size: 92KB

.reloc Size: 97KB - Virtual size: 96KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 350KB - Virtual size: 350KB

.data
Size: 19KB - Virtual size: 60KB

.rsrc
Size: 92KB - Virtual size: 92KB

.reloc
Size: 97KB - Virtual size: 96KB