Static task
static1
Behavioral task
behavioral1
Sample
2024-05-30_d9ae87cbbc410e80f1575e18f6991d2c_avoslocker_revil.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
2024-05-30_d9ae87cbbc410e80f1575e18f6991d2c_avoslocker_revil.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
Target
2024-05-30_d9ae87cbbc410e80f1575e18f6991d2c_avoslocker_revil
Size
9.7MB
MD5
d9ae87cbbc410e80f1575e18f6991d2c
SHA1
5293cc30a8b460659d791d58db04a3b1a9739445
SHA256
560b2f536e629cb0d9e2da33a5ab3603ab82d3c732348df9516744597e8099c0
SHA512
2719fef942f0fa55d2a235a4fc9dc9db087b835999404aa03214542cd91f489b16eee74b2559e6aae5d7d2c90a22d5731870a30c38b68fe92d89b545ca3a959c
SSDEEP
196608:u9nt/EtU7FiHJRx18U5KILq9XK5iEKsXwW/lsG4E7aDoXy:u9t/Et9HBvLSXK5iEpgDEu8C
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
E:\小目标登录器\代理测试\Release\GameUpdate_XMB.pdb
_TrackMouseEvent
InitCommonControlsEx
UrlCanonicalizeA
PathCanonicalizeA
PathFindExtensionA
PathFindFileNameA
StrFormatKBSizeA
UrlUnescapeA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathAppendA
PathCompactPathA
PathGetDriveNumberA
PathRemoveBackslashA
PathSetDlgItemPathA
PathRemoveFileSpecA
PathGetArgsA
PathFileExistsA
htons
getsockopt
recv
connect
socket
getnameinfo
shutdown
send
setsockopt
inet_addr
inet_ntoa
WSACleanup
closesocket
gethostbyname
select
ioctlsocket
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
WSAResetEvent
WSAWaitForMultipleEvents
inet_pton
WSAGetLastError
__WSAFDIsSet
WSASetLastError
bind
getpeername
getsockname
ntohs
WSAIoctl
accept
ntohl
htonl
listen
getaddrinfo
freeaddrinfo
recvfrom
sendto
gethostname
WSAAddressToStringA
WSAStartup
PlaySoundA
timeGetTime
GetEnvironmentVariableW
SizeofResource
HeapFree
InitializeCriticalSectionEx
FindResourceA
HeapSize
MultiByteToWideChar
GetLastError
LockResource
GlobalAlloc
GlobalFree
HeapReAlloc
RaiseException
LoadResource
FindResourceW
HeapAlloc
DecodePointer
LoadLibraryExA
GetModuleHandleW
VirtualQuery
VirtualProtect
GetSystemInfo
GetDiskFreeSpaceExA
GetLogicalDriveStringsA
GetVersionExA
CreateMutexA
GetDriveTypeA
GetProcessAffinityMask
DeviceIoControl
SetProcessAffinityMask
GetCurrentProcess
SystemTimeToFileTime
GetLocalTime
CreateThread
MoveFileExA
GetExitCodeThread
FindNextFileA
FindFirstFileA
GetFileAttributesExA
GetTickCount
GetModuleHandleA
OutputDebugStringA
CreateEventA
SetEvent
WaitForMultipleObjects
GetCurrentDirectoryA
lstrcpynA
lstrcpynW
MulDiv
FreeLibrary
GetProcAddress
LoadLibraryA
ExpandEnvironmentStringsA
WriteConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
FindNextFileW
FindFirstFileExW
CreateDirectoryW
GetFileAttributesExW
GetTimeZoneInformation
SetConsoleCtrlHandler
DeleteFileW
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetConsoleCP
ReadConsoleW
GetConsoleMode
SetStdHandle
HeapQueryInformation
VirtualAlloc
GetCurrentDirectoryW
GetSystemTime
FindFirstFileW
ConvertThreadToFiber
ConvertFiberToThread
SetConsoleMode
ReadConsoleA
SwitchToFiber
DeleteFiber
FindClose
CreateFiber
SetCurrentDirectoryW
SetEnvironmentVariableW
GetFullPathNameW
GetDriveTypeW
GetCommandLineW
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
RtlUnwind
GetStringTypeW
CompareStringEx
LCMapStringEx
SleepConditionVariableSRW
SleepConditionVariableCS
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
TryEnterCriticalSection
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
OutputDebugStringW
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
CreateEventW
GetUserDefaultLCID
GetTempFileNameA
SetCurrentDirectoryA
CreateProcessA
GetCurrentProcessId
SetEnvironmentVariableA
ExitProcess
RemoveDirectoryA
CloseHandle
DeleteFileA
CreateFileA
CopyFileA
GetTempPathA
Sleep
GetCommandLineA
OpenProcess
WaitForSingleObject
GetEnvironmentVariableA
MoveFileA
GetModuleFileNameA
TerminateThread
GlobalUnlock
SearchPathA
GetProfileIntA
SetErrorMode
GetWindowsDirectoryA
FindResourceExW
FileTimeToLocalFileTime
lstrcmpiA
DuplicateHandle
GetVolumeInformationA
GetFullPathNameA
lstrcpyA
GetThreadLocale
GetACP
GetCPInfo
GetOEMCP
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalAlloc
InitializeCriticalSectionAndSpinCount
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
WideCharToMultiByte
GetProcessHeap
DeleteCriticalSection
GlobalLock
GlobalSize
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
QueryPerformanceCounter
EnterCriticalSection
LeaveCriticalSection
SleepEx
QueryPerformanceFrequency
GetSystemDirectoryA
WaitForSingleObjectEx
CompareFileTime
GetSystemTimeAsFileTime
GetStdHandle
GetFileType
ReadFile
PeekNamedPipe
SetLastError
FormatMessageW
VerSetConditionMask
VerifyVersionInfoA
GetFileSizeEx
WriteFile
CreateDirectoryA
SetFilePointer
CreateFileW
GetFileSize
SetThreadPriority
GetCurrentThreadId
ResumeThread
InitializeCriticalSection
ResetEvent
FormatMessageA
SetUnhandledExceptionFilter
GetCurrentThread
TerminateProcess
UnmapViewOfFile
GetFileAttributesA
SetFileAttributesA
LocalFree
CreateToolhelp32Snapshot
Process32First
Process32Next
Module32First
Module32Next
WTSGetActiveConsoleSessionId
OpenMutexA
ReleaseMutex
LockFile
UnlockFile
SetFilePointerEx
SetEndOfFile
GetFileInformationByHandle
FlushFileBuffers
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetFileTime
EncodePointer
GetSystemDirectoryW
GetModuleFileNameW
LoadLibraryExW
LoadLibraryW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomA
FrameRect
EmptyClipboard
CloseClipboard
ClientToScreen
OpenClipboard
GetSubMenu
LoadMenuW
GetSystemMenu
DeleteMenu
AppendMenuA
PeekMessageA
TranslateMessage
IsIconic
FillRect
SetRect
UpdateLayeredWindow
SetClipboardData
MsgWaitForMultipleObjects
DispatchMessageA
UpdateWindow
MoveWindow
MessageBoxW
GetUserObjectInformationW
GetProcessWindowStation
GetPropA
GetClassNameA
GetLastActivePopup
GetSystemMetrics
InflateRect
SystemParametersInfoA
LoadIconW
IsWindow
SetWindowLongW
GetWindowLongW
SetParent
ShowWindow
PostMessageW
PostThreadMessageA
GetWindowTextA
GetWindowDC
RegisterWindowMessageA
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsMenu
IsChild
DestroyWindow
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetDlgCtrlID
SetFocus
GetCapture
GetMenu
SetMenu
GetMenuItemID
GetMenuItemCount
TrackPopupMenu
SetActiveWindow
GetForegroundWindow
BeginPaint
EndPaint
ValidateRect
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
RemovePropA
GetWindowTextLengthA
SetWindowTextA
MapWindowPoints
GetSysColor
CopyRect
GetClassLongA
GetTopWindow
GetWindow
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
LoadIconA
SetScrollInfo
GetScrollInfo
WinHelpA
MonitorFromWindow
GetMonitorInfoA
CheckDlgButton
SendDlgItemMessageA
IsWindowEnabled
GetDlgItem
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetActiveWindow
GetDesktopWindow
GetMenuStringA
GetMenuState
InsertMenuA
RemoveMenu
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoA
LoadBitmapW
GetMessageA
PostQuitMessage
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
GetKeyNameTextA
MapVirtualKeyA
IntersectRect
DestroyMenu
GetMenuItemInfoA
CopyImage
GetSysColorBrush
RealChildWindowFromPoint
TrackMouseEvent
DestroyIcon
LoadImageW
WaitMessage
SetCapture
ReleaseCapture
LoadCursorW
CharUpperA
CharNextA
CopyAcceleratorTableA
InvalidateRgn
IsRectEmpty
GetNextDlgGroupItem
MessageBeep
IsClipboardFormatAvailable
CreatePopupMenu
GetMenuDefaultItem
DrawFocusRect
LoadImageA
DrawIconEx
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
DrawStateA
SetClassLongA
SetWindowRgn
DrawEdge
DrawFrameControl
IsZoomed
BringWindowToTop
SetCursorPos
CopyIcon
DrawIcon
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatA
UnionRect
MonitorFromPoint
GetComboBoxInfo
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
CharUpperBuffA
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
EqualRect
GrayStringA
TabbedTextOutA
DrawTextExA
GetAsyncKeyState
OffsetRect
SetWindowLongA
EnableWindow
ReleaseDC
GetParent
UnregisterClassA
GetClientRect
MessageBoxA
GetDC
EnumWindows
PostMessageA
GetWindowThreadProcessId
GetCursorPos
InvalidateRect
PtInRect
KillTimer
SetCursor
SendMessageA
RegisterHotKey
SetTimer
ScreenToClient
SetWindowPos
IsWindowVisible
LoadCursorA
GetFocus
GetWindowRect
GetMessagePos
DrawTextA
VkKeyScanExW
WindowFromPoint
GetKeyboardLayout
GetKeyState
RedrawWindow
GetWindowLongA
SetRectEmpty
SetForegroundWindow
UnregisterHotKey
SetPropA
IsDialogMessageA
AdjustWindowRectEx
OffsetViewportOrgEx
CreateCompatibleBitmap
SelectObject
DeleteObject
CreateDCA
DeleteDC
GetObjectA
GetStockObject
SelectPalette
SetWindowOrgEx
SetBkColor
SetTextColor
CreateBitmap
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkMode
SetMapMode
SetLayout
SetWindowExtEx
RealizePalette
OffsetWindowOrgEx
SetPolyFillMode
SetROP2
SetTextAlign
GetLayout
ExtCreatePen
MoveToEx
SetViewportExtEx
GetTextFaceA
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FillRgn
RoundRect
OffsetRgn
LPtoDP
CreateRoundRectRgn
Polygon
CreatePolygonRgn
Ellipse
CreateEllipticRgn
SetDIBColorTable
StretchBlt
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
EnumFontFamiliesExA
GetRgnBox
GetTextColor
GetBkColor
DPtoLP
SetRectRgn
GetMapMode
CombineRgn
CreateCompatibleDC
CreateDIBSection
BitBlt
CreateSolidBrush
GetDeviceCaps
CreateFontA
GetBkMode
GetTextExtentPoint32A
PtVisible
Escape
TextOutA
RectVisible
ExtTextOutA
GetTextMetricsA
GetPixel
CreateFontIndirectA
Polyline
CreateRectRgnIndirect
FrameRgn
Rectangle
SetPixel
ScaleViewportExtEx
PatBlt
CopyMetaFileA
ScaleWindowExtEx
SetViewportOrgEx
SHGetSpecialFolderPathA
SHGetDataFromIDListW
SHGetSpecialFolderPathW
SHGetFolderPathW
ShellExecuteW
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetDesktopFolder
Shell_NotifyIconA
SHGetFileInfoA
ShellExecuteA
ShellExecuteExA
SHGetSpecialFolderLocation
DragQueryFileA
SHChangeNotify
SHAppBarMessage
DragFinish
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CreateStreamOnHGlobal
StringFromGUID2
CoInitialize
CoCreateGuid
CoUninitialize
OleDuplicateData
ReleaseStgMedium
CLSIDFromString
CLSIDFromProgID
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
RegisterDragDrop
CoInitializeEx
CoLockObjectExternal
RegCreateKeyExA
RegEnumKeyExA
CryptEnumProvidersW
CryptSignHashW
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
RegQueryInfoKeyA
RegEnumValueA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
CryptAcquireContextA
CryptReleaseContext
CryptGetHashParam
CryptGenRandom
CryptCreateHash
CryptHashData
CryptDestroyHash
OpenThreadToken
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
GetTokenInformation
OpenSCManagerA
EnumServicesStatusA
CloseServiceHandle
RegOpenKeyExA
RegEnumKeyA
RegQueryValueA
TransparentBlt
AlphaBlend
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeParentBackground
DrawThemeText
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
IsAppThemed
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
ord8
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipFillRectangle
GdipCreateTexture
GdipBitmapGetPixel
GdipDrawImageRectRectI
GdipSetImageAttributesColorMatrix
GdipDrawRectangleI
GdipCreateBitmapFromHBITMAP
GdipCreateImageAttributes
GdipFillRectangleI
GdipDeletePen
GdipDrawImageI
GdipCreatePen1
GdipImageGetFrameDimensionsCount
GdipGetPropertyItem
GdipImageSelectActiveFrame
GdipSetInterpolationMode
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipCreateStringFormat
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipGetPropertyItemSize
GdipDisposeImageAttributes
GdipDrawImageRectRect
GdipDeleteBrush
GdipDrawImageRectI
GdipSetStringFormatLineAlign
GdipCreateFont
GdipCreateSolidFill
GdipDrawString
GdipSetTextRenderingHint
GdipCloneBrush
GdipDeleteStringFormat
GdipDeleteFont
GdipSetStringFormatAlign
GdipSetSmoothingMode
GdiplusStartup
GdiplusShutdown
GdipGetImageHeight
GdipReleaseDC
GdipDrawImageRect
GdipCloneImage
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipFree
GdipCreateFromHDC
GdipDeleteGraphics
GdipGetImageWidth
GdipCreateBitmapFromFile
IcmpCloseHandle
IcmpSendEcho
IcmpCreateFile
GetIpForwardTable
GetAdaptersInfo
GetAdaptersAddresses
MakeSureDirectoryPathExists
InternetSetStatusCallback
HttpQueryInfoA
HttpOpenRequestA
HttpAddRequestHeadersA
InternetOpenA
InternetCloseHandle
HttpSendRequestA
InternetConnectA
InternetReadFile
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetOpenUrlA
InternetSetFilePointer
InternetWriteFile
InternetQueryDataAvailable
InternetQueryOptionA
InternetSetOptionA
InternetGetLastResponseInfoA
ord200
ord301
ord32
ord30
ord79
ord35
ord33
ord27
ord26
ord22
ord41
ord143
ord50
ord45
ord60
ord211
ord46
CertGetCertificateContextProperty
CertDuplicateCertificateContext
CertOpenStore
CertCloseStore
CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringA
CertFindExtension
CertAddCertificateContextToStore
CryptDecodeObjectEx
CertOpenSystemStoreA
CertGetIntendedKeyUsage
CertGetEnhancedKeyUsage
PFXImportCertStore
CryptStringToBinaryA
CertFreeCertificateContext
CertFindCertificateInStore
CertEnumCertificatesInStore
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject
ClosePrinter
DocumentPropertiesA
OpenPrinterA
VariantChangeType
SysAllocStringByteLen
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringLen
SafeArrayDestroy
VariantClear
VariantInit
LoadTypeLi
OleCreateFontIndirect
SysAllocString
VariantCopy
VarBstrFromDate
SysFreeString
BCryptGenRandom
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ