2024-06-26_d70f114c88f0148e85079a043e5f7a3b_avoslocker_wapomi

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-26_d70f114c88f0148e85079a043e5f7a3b_avoslocker_wapomi
Size

4.6MB
MD5

d70f114c88f0148e85079a043e5f7a3b
SHA1

a0efae6377ec53c9f2d22e58888b491510aac83a
SHA256

d042b9724566c45bc72a51ee70f24a84d5749f6b3c224681d8777bf75b534f79
SHA512

2aa3b85b40fcbb48aee624c011d104e81790f1197f4aeb28621f7406502997f490b4f66681be02d54ae70a66ebd3056ab9e9847bb09e8fe8e6cef760b3fe3e2b
SSDEEP

98304:mO+Hks6rCehUVz+4RkIP5r1eLnwUImHEeqBMBYFLOAkGkzdnEVomFHKnPk:mO+HFKhOIImHEeqBMyFLOyomFHKnPk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-26_d70f114c88f0148e85079a043e5f7a3b_avoslocker_wapomi

Files

2024-06-26_d70f114c88f0148e85079a043e5f7a3b_avoslocker_wapomi
.exe windows:6 windows x86 arch:x86

bda4428e8c5b56eeca56f60d614fa2be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
GetConsoleOutputCP
ReadConsoleW
GetConsoleMode
SetFilePointerEx
ExitProcess
GetStdHandle
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
GetOEMCP
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
GetCommandLineA
RtlUnwind
OutputDebugStringW
GetTimeZoneInformation
FindFirstFileExW
IsValidCodePage
GetSystemInfo
GetDriveTypeW
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
FindResourceExW
GetTempFileNameW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTickCount
SetErrorMode
GetFileTime
GetACP
GetFileSizeEx
GetFileAttributesExW
VirtualProtect
GlobalGetAtomNameW
GetFileAttributesW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
GetThreadLocale
lstrcmpiW
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileW
FindFirstFileW
FindClose
FileTimeToLocalFileTime
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
CopyFileW
FormatMessageW
LocalFree
GlobalSize
MulDiv
GlobalAddAtomW
ResumeThread
SetThreadPriority
CreateEventW
SetEvent
VerifyVersionInfoW
VerSetConditionMask
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
LoadLibraryA
lstrcpyW
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleA
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
SetLastError
OutputDebugStringA
SetFileTime
SetFileAttributesW
CreateDirectoryW
DosDateTimeToFileTime
GetCurrentDirectoryW
SystemTimeToFileTime
ReadFile
SetFilePointer
GetFileType
CreateFileW
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
WriteProcessMemory
CreateProcessA
WritePrivateProfileStringA
GetModuleFileNameW
GetCurrentProcessId
MultiByteToWideChar
GetFileAttributesA
GetTempPathW
RemoveDirectoryW
DeleteFileW
CreateThread
WaitForSingleObject
GetCurrentProcess
DuplicateHandle
GetModuleHandleW
GetProcAddress
WriteFile
DeleteFileA
CreateFileA
SetCurrentDirectoryA
Sleep
Process32NextW
CreateMutexW
GetExitCodeProcess
TerminateProcess
OpenProcess
Process32FirstW
Module32NextW
CloseHandle
Module32FirstW
CreateToolhelp32Snapshot
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
GetLastError
VirtualAlloc
WriteConsoleW

user32

CopyImage
ReleaseCapture
SetCapture
WaitMessage
WindowFromPoint
CharUpperW
SendDlgItemMessageA
LoadMenuW
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
UnhookWindowsHookEx
GetTopWindow
GetClassLongW
PtInRect
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
MapVirtualKeyW
GetKeyNameTextW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
DeleteMenu
GetMenuState
GetMenuStringW
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
GetClassNameW
UpdateWindow
ShowOwnedPopups
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
LockWindowUpdate
DispatchMessageW
TranslateMessage
GetMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
EnumDisplayMonitors
GetMonitorInfoW
SystemParametersInfoW
DestroyMenu
EnableScrollBar
GetDoubleClickTime
FindWindowA
SendMessageA
EnableWindow
LoadIconW
SendMessageW
CopyRect
SetRectEmpty
GetClassInfoW
DefWindowProcW
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
MessageBoxW
IsWindowEnabled
DrawIconEx
IsRectEmpty
OffsetRect
InflateRect
FillRect
DrawFocusRect
GetSysColorBrush
GetSysColor
MapWindowPoints
RedrawWindow
SetWindowRgn
DrawStateW
GetFocus
IsWindowVisible
RealChildWindowFromPoint
CharNextW
CopyAcceleratorTableW
InvalidateRgn
SetRect
IntersectRect
GetNextDlgGroupItem
MessageBeep
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DestroyIcon
LoadImageW
SetParent
MonitorFromPoint
DrawFrameControl
DrawEdge
RegisterWindowMessageW
TrackMouseEvent
IsZoomed
GetAsyncKeyState
GetSystemMenu
NotifyWinEvent
SetCursorPos
UnionRect
GetSubMenu
SetWindowLongW
CreateAcceleratorTableW
GetWindowLongW
SetLayeredWindowAttributes
LoadImageA
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
PostMessageW
GetWindowRect
InvalidateRect
GetWindowThreadProcessId
EnumWindows
IsWindow
BringWindowToTop
GetLastActivePopup
SetForegroundWindow
ShowWindow
ExitWindowsEx
PostQuitMessage
LoadStringA
FindWindowW
FindWindowExW
LoadBitmapW
EqualRect
GetParent
LoadCursorW
SetCursor
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
UnregisterClassW
KillTimer
SetTimer
SetWindowPos
SetWindowContextHelpId
GetIconInfo
CopyIcon
GetMenuItemInfoW
GetMenuDefaultItem
GetWindow
MapDialogRect
CreatePopupMenu
SetMenuDefaultItem
ModifyMenuW
DestroyAcceleratorTable
SetClassLongW
GetUpdateRect
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
GetWindowRgn
DestroyCursor
InvertRect
HideCaret
CreateMenu
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
PostThreadMessageW
IsClipboardFormatAvailable
FrameRect
CharUpperBuffW
SubtractRect
RegisterClipboardFormatW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
UpdateLayeredWindow
PeekMessageW

gdi32

DeleteObject
EnumFontFamiliesW
GetDeviceCaps
GetTextCharsetInfo
CreateBitmap
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
SetViewportExtEx
CreatePatternBrush
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CopyMetaFileW
CreateDCW
GetRgnBox
GetMapMode
SetRectRgn
DPtoLP
RealizePalette
SetPixel
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
CreatePen
CreateFontIndirectW
CreateDIBitmap
GetTextMetricsW
Polyline
Polygon
CreatePolygonRgn
PatBlt
GetTextExtentPoint32W
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateEllipticRgn
CombineRgn
DeleteDC
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateCompatibleBitmap
BitBlt
GetStockObject
CreateFontW
StretchBlt
CreateCompatibleDC
SetViewportOrgEx
CreateHatchBrush
GetObjectW

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExA
RegOpenKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken

shell32

ShellExecuteA
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
SHGetFileInfoW
ShellExecuteW
DragFinish
DragQueryFileW
SHAppBarMessage
SHGetSpecialFolderPathW

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathFindExtensionW
PathStripToRootW
StrFormatKBSizeW
PathRemoveFileSpecW
PathIsUNCW
PathFindFileNameW

uxtheme

CloseThemeData
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetWindowTheme
DrawThemeText
OpenThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
IsAppThemed

ole32

OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleUninitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoInitializeEx
CoRevokeClassObject
CoRegisterMessageFilter
OleInitialize
CoFreeUnusedLibraries
CoDisconnectObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
StringFromGUID2
CreateStreamOnHGlobal
CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
LoadTypeLi
VariantChangeType
SysAllocStringLen
VariantCopy
VarBstrFromDate
VariantClear
VariantInit
SysStringLen
SysFreeString
SysAllocString

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipImageSelectActiveFrame
GdipGetPropertyItem
GdipGetPropertyItemSize
GdiplusStartup
GdipFree
GdipDisposeImage
GdipAlloc
GdipCloneImage
GdipCreateBitmapFromStream
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageI
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectRect
GdiplusShutdown
GdipLoadImageFromFile
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount

iphlpapi

GetTcpTable

wininet

InternetQueryDataAvailable
InternetReadFile
InternetOpenUrlW
HttpQueryInfoA
DeleteUrlCacheEntryA
InternetCloseHandle
InternetOpenW
InternetOpenUrlA

ws2_32

inet_addr
ntohs

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 975KB - Virtual size: 992KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

ʪ�4�ux
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bda4428e8c5b56eeca56f60d614fa2be

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

iphlpapi

wininet

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 341KB - Virtual size: 341KB

.data Size: 975KB - Virtual size: 992KB

.rsrc Size: 1.6MB - Virtual size: 1.6MB

.reloc Size: 141KB - Virtual size: 140KB

ʪ�4�ux Size: 16KB - Virtual size: 20KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 341KB - Virtual size: 341KB

.data
Size: 975KB - Virtual size: 992KB

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

.reloc
Size: 141KB - Virtual size: 140KB

ʪ�4�ux
Size: 16KB - Virtual size: 20KB