2024-07-27_149016dc21b887cd4470366562ae4800_avoslocker

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-27_149016dc21b887cd4470366562ae4800_avoslocker
Size

3.0MB
MD5

149016dc21b887cd4470366562ae4800
SHA1

329b21cea250ed986fb0999d7a4d6a2de12f12c5
SHA256

b71ed4d78d581ebfdc0c0be77f433d92c74f33785c743083b95b9d1f1496e003
SHA512

c2a3eee9cb36f0ebd6900311868e9516f25df716af96b0dd63ad4b0f650d2b94e71c9e97e41cc92b0a21d97e7efbeef18211ebff8dbc142e9e35a3d3d9b94ec6
SSDEEP

49152:sjawoK4NeHdlCDmAtLCTWCU3baTp3ScOgcyMAehmuIl0LlvPzNbuReOieCZaNJ:snoKRHzx2CTWC4al3RODyMAehPIl0Ll8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-07-27_149016dc21b887cd4470366562ae4800_avoslocker

Files

2024-07-27_149016dc21b887cd4470366562ae4800_avoslocker
.exe windows:6 windows x86 arch:x86

92c2327af9559a33033d0dd4c4f9c873

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

libzip

zip_get_name
zip_stat_init
zip_stat
zip_fopen
zip_fread
zip_close
zip_open
zip_get_num_entries
zip_fclose

supercan32

sc_dev_scan
sc_init
sc_cmd_ctx_run
sc_can_stream_rx
sc_dev_count
sc_can_stream_tx
sc_can_stream_uninit
sc_cmd_ctx_uninit
sc_dev_close
sc_uninit
sc_dev_open_by_index
sc_can_stream_init
sc_cmd_ctx_init

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

kernel32

SetErrorMode
GetWindowsDirectoryW
GetTempPathW
SearchPathW
GetProfileIntW
FindResourceExW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
WaitForSingleObjectEx
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
VerifyVersionInfoW
QueryPerformanceFrequency
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
VirtualQuery
VirtualAlloc
GetSystemInfo
RtlUnwind
GetCPInfo
CompareStringEx
LCMapStringEx
GetStringTypeW
OutputDebugStringW
VirtualProtect
lstrcpyW
VerSetConditionMask
WriteConsoleW
LocalFileTimeToFileTime
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
ReadConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
ExitProcess
GetStdHandle
GetFileType
SetStdHandle
SizeofResource
LockResource
LoadResource
FindResourceW
GetModuleFileNameW
MultiByteToWideChar
GetLastError
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
CreateNamedPipeW
ConnectNamedPipe
ReadFile
DisconnectNamedPipe
Sleep
CloseHandle
SetEvent
ResetEvent
WaitForSingleObject
LocalAlloc
CreateEventW
GetFileSizeEx
GetFileAttributesExW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GlobalGetAtomNameW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
GetThreadLocale
GetStringTypeExW
MoveFileW
LocalFree
CreateProcessW
CreateThread
CreateFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFileSize
FlushFileBuffers
DeleteFileW
GetUserDefaultLCID
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFullPathNameW
GetFileTime
GetFileAttributesW
GetDiskFreeSpaceW
ResumeThread
SuspendThread
SetThreadPriority
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
GlobalAddAtomW
GetTickCount
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetVersionExW
GetCurrentThreadId
GetCurrentThread
lstrcmpW
LoadLibraryA
GetModuleHandleA
OutputDebugStringA
GetCurrentProcessId
SetLastError
CopyFileW
FormatMessageW
GlobalSize
GetProcessHeap
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
HeapFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetCommandLineA
FindClose
FindNextFileW
FindFirstFileW
InitializeCriticalSectionEx
MapViewOfFile
CreateFileMappingW
GetExitCodeProcess
UnmapViewOfFile
InitializeCriticalSection
CreateSemaphoreW
ReleaseSemaphore
WaitForMultipleObjects
GetProcAddress
WriteFile
GetCurrentDirectoryW
MulDiv
GetModuleHandleW
LoadLibraryW
FreeLibrary
GetLocalTime
OpenEventW
CreateDirectoryW
WideCharToMultiByte

user32

DrawFrameControl
LockWindowUpdate
GetDCEx
GetTabbedTextExtentW
DrawIcon
MonitorFromPoint
UnionRect
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
NotifyWinEvent
SetWindowRgn
TrackMouseEvent
EnumDisplayMonitors
SetLayeredWindowAttributes
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
CopyImage
RealChildWindowFromPoint
GetSysColorBrush
SetParent
IsZoomed
SetCursorPos
WindowFromPoint
ReuseDDElParam
UnpackDDElParam
DestroyIcon
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
GetAsyncKeyState
LoadMenuW
CharUpperW
SendDlgItemMessageA
MapVirtualKeyW
GetKeyNameTextW
DestroyMenu
GetSystemMetrics
DestroyCursor
IntersectRect
ShowOwnedPopups
GetMessageW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongW
EqualRect
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
SetScrollRange
ScrollWindow
RedrawWindow
ValidateRect
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
DrawFocusRect
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
CallWindowProcW
GetMessageTime
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
EndPaint
BeginPaint
GetWindowDC
GetDC
LoadBitmapW
GetClassNameW
DrawStateW
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
IsDialogMessageW
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetFocus
GetDlgCtrlID
IsDlgButtonChecked
CheckDlgButton
SetDlgItemTextW
GetDlgItem
MoveWindow
ShowWindow
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
RegisterClipboardFormatW
WaitMessage
GetKeyboardState
ToAscii
TabbedTextOutW
DrawTextW
DrawTextExW
PeekMessageW
PostQuitMessage
GetLastActivePopup
GetWindowLongW
IsWindowEnabled
InsertMenuW
GetMenuItemID
GetMenuState
GetMenuStringW
UnregisterClassW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuItemCount
ToUnicodeEx
GetKeyboardLayout
CreateAcceleratorTableW
DestroyAcceleratorTable
SetClassLongW
TranslateMDISysAccel
CharUpperBuffW
ModifyMenuW
CopyIcon
FrameRect
IsClipboardFormatAvailable
HideCaret
InvertRect
GetDoubleClickTime
IsCharLowerW
MapVirtualKeyExW
DefFrameProcW
SetMenuInfo
GetSystemMenu
DrawIconEx
GetIconInfo
DefMDIChildProcW
GetWindowRgn
GetComboBoxInfo
SubtractRect
GetUpdateRect
IsIconic
GrayStringW
CreateDialogIndirectParamW
DestroyWindow
GetClientRect
GetMessagePos
GetCursorPos
ClientToScreen
PtInRect
FillRect
InflateRect
SetRect
SetCursor
GetClassInfoW
DefWindowProcW
RegisterClassW
DrawEdge
ChildWindowFromPoint
LoadCursorW
SetCapture
ReleaseCapture
ReleaseDC
CopyRect
IsRectEmpty
SetRectEmpty
GetScrollPos
UpdateWindow
MessageBoxW
EnableWindow
EnumWindows
SendMessageW
GetWindowThreadProcessId
RegisterWindowMessageW
GetParent
IsWindow
GetWindowRect
ScreenToClient
OffsetRect
InvalidateRect
WaitForInputIdle
CreateMenu
CreatePopupMenu
AppendMenuW
EnableScrollBar
ShowScrollBar
GetScrollRange
SetScrollPos
TranslateMessage
DispatchMessageW
PostThreadMessageW
GetKeyState
RemoveMenu
LoadIconW
GetDesktopWindow
PostMessageW
SystemParametersInfoW
SetForegroundWindow
GetSysColor
GetSubMenu
GetFocus
DrawMenuBar
DeleteMenu
KillTimer
SetTimer
LoadImageW

gdi32

StartPage
EndPage
EndDoc
AbortDoc
CreateFontW
GetObjectW
CreateDIBSection
SelectObject
DeleteDC
ExtCreatePen
PolyBezier
Polyline
Ellipse
Polygon
CreateHatchBrush
CopyMetaFileW
CreateDCW
CreateBitmap
CreatePatternBrush
CreateRectRgn
ExcludeClipRect
GetClipBox
GetCurrentPositionEx
GetObjectType
GetPixel
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextColor
SetTextAlign
GetDeviceCaps
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
CombineRgn
CreateRectRgnIndirect
PatBlt
SetRectRgn
SetAbortProc
GetViewportOrgEx
GetCharWidthW
StretchDIBits
GetTextMetricsW
GetTextColor
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreateEllipticRgn
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetWindowOrgEx
GetTextFaceW
SetPixel
CreatePolygonRgn
RealizePalette
StretchBlt
SetDIBColorTable
OffsetRgn
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RoundRect
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
SetPixelV
StartDocW
Rectangle
CreateSolidBrush
CreatePen
DeleteObject
GetTextExtentPoint32W
GetStockObject
Escape
ExtTextOutW
TextOutW
PtVisible
BitBlt
GetBkColor
DPtoLP
GetViewportExtEx
GetWindowExtEx
GetMapMode
CreateCompatibleBitmap
LPtoDP
MoveToEx
RectVisible
CreateCompatibleDC

msimg32

TransparentBlt
AlphaBlend
GradientFill

winspool.drv

DocumentPropertiesW
ClosePrinter
GetJobW
OpenPrinterW

advapi32

RegSetValueExW
SetSecurityDescriptorDacl
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegQueryValueW
RegEnumKeyW
InitializeSecurityDescriptor
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueW
RegCloseKey

shell32

DragFinish
DragAcceptFiles
SHGetFolderPathW
SHGetSpecialFolderPathW
SHGetFileInfoW
ExtractIconW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHAppBarMessage
SHGetDesktopFolder
DragQueryFileW

comctl32

ImageList_ReplaceIcon
ImageList_GetImageCount
InitCommonControlsEx

shlwapi

PathFindExtensionW
PathFileExistsW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathRemoveFileSpecW
PathRemoveExtensionW

uxtheme

IsAppThemed
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
DrawThemeText
OpenThemeData
CloseThemeData
GetThemePartSize
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme

ole32

CoInitializeEx
CoInitializeSecurity
RevokeDragDrop
RegisterDragDrop
OleLockRunning
CoLockObjectExternal
OleGetClipboard
DoDragDrop
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
CoRevokeClassObject
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoUninitialize
CoCreateInstance
CoSetProxyBlanket
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
OleIsCurrentClipboard

oleaut32

SystemTimeToVariantTime
VariantClear
SysAllocStringLen
VariantInit
VariantChangeType
SafeArrayDestroy
SysAllocString
VariantCopy
VarBstrFromDate
LoadTypeLi
OleCreateFontIndirect
SysStringLen
SysAllocStringByteLen
VariantTimeToSystemTime
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdiplusStartup
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetInterpolationMode
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipDrawImageRectI
GdipGetImagePaletteSize
GdipGetImagePalette
GdiplusShutdown
GdipDisposeImage
GdipFree
GdipAlloc
GdipCloneImage
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0

ws2_32

WSASetLastError
recv
send
closesocket
WSACleanup
WSAStartup
socket
connect
htons
inet_addr
setsockopt

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW
timeEndPeriod
timeSetEvent
timeBeginPeriod
timeGetDevCaps
timeKillEvent

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 461KB - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 200.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92c2327af9559a33033d0dd4c4f9c873

Headers

DLL Characteristics

File Characteristics

Imports

libzip

supercan32

version

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 461KB - Virtual size: 460KB

.data Size: 34KB - Virtual size: 200.2MB

.rsrc Size: 145KB - Virtual size: 144KB

.reloc Size: 178KB - Virtual size: 178KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 461KB - Virtual size: 460KB

.data
Size: 34KB - Virtual size: 200.2MB

.rsrc
Size: 145KB - Virtual size: 144KB

.reloc
Size: 178KB - Virtual size: 178KB