W[.]7[.]K[.]1[.]9[.]ALL_EDITIONS[.]zip

Resubmissions

15-09-2024 12:08

240915-payp7steln 3

15-09-2024 12:06

240915-n9pqxasgka 3

Sharing

Copy URL

Twitter E-mail

General

Target

W.7.K.1.9.ALL_EDITIONS.zip
Size

1.2MB
MD5

608de45d0fd639de3f8d43c5f756793c
SHA1

72bac8f3f8fad1eecbda5d7070fdbb996b74ca16
SHA256

fab77b89753b2f43d9985098e1144657bb73246bfb45199744cd27c8cb197cb8
SHA512

a104ff9a37df957668d1bd5b3733f9224bf0b96b0d470b4fbbfb6ac1762d672815c508ea776338f28f715b19b14c749946e0ea91b00bfc8502c705296aafe7a0
SSDEEP

24576:polQCgRGOtXtnEfQOi1cO190TpMKZ3us6auslXaVUaU3QJv0Kf0/c:polyYO9qYTb1KwszvlXQVUAJM80/c

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/W.7.K.1.9.ALL_EDITIONS/Windows 7 Ultimate KEYGEN.exe
unpack001/W.7.K.1.9.ALL_EDITIONS/fmod.dll

Files

W.7.K.1.9.ALL_EDITIONS.zip
.zip
W.7.K.1.9.ALL_EDITIONS/Torrent downloaded from AhaShare.com.txt
W.7.K.1.9.ALL_EDITIONS/Windows 7 Ultimate KEYGEN.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Finnian\Desktop\KEYGEN\WindowsApplication1\obj\Debug\Windows 7 Ultimate KEYGEN.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
W.7.K.1.9.ALL_EDITIONS/fmod.dll
.dll windows:4 windows x86 arch:x86

a6570e6618ea090d44e3ac71ded61146

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CharLowerBuffA
GetForegroundWindow
UnregisterClassA
DestroyWindow
PostMessageA
DefWindowProcA
ShowWindow
CreateWindowExA
RegisterClassA

winmm

waveOutGetDevCapsA
waveOutGetNumDevs
waveOutOpen
waveOutClose
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite
waveOutReset
waveOutGetPosition
waveInAddBuffer
mixerClose
mixerGetNumDevs
mixerOpen
mixerSetControlDetails
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
mciGetErrorStringA
timeSetEvent
timeKillEvent
mciSendCommandA
timeGetTime
waveInReset
waveInClose
waveInOpen
waveInStart
waveInGetNumDevs
waveInGetDevCapsA
waveInUnprepareHeader
waveInPrepareHeader

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumKeyA
RegOpenKeyA
RegQueryValueExA

ole32

CoUninitialize
CLSIDFromString
CoInitialize
CoCreateInstance

msacm32

acmStreamConvert
acmStreamUnprepareHeader
acmStreamClose
acmFormatSuggest
acmStreamOpen
acmStreamSize
acmStreamPrepareHeader

wsock32

connect
select
__WSAFDIsSet
recv
send
WSAGetLastError
WSAStartup
WSACleanup
socket
closesocket
htons
ioctlsocket
inet_addr
gethostbyname

msvcrt

qsort
fabs
frexp
_adjust_fdiv
abs
_initterm
memchr
memmove
floor
_errno
wcstombs
atan
sin
cos
clock
srand
_CIpow
memcmp
ldexp
memset
memcpy
rand
pow
log
_ftol
atoi
strcpy
??3@YAXPAX@Z
??2@YAPAXI@Z
__CxxFrameHandler
strcmp
strlen
sprintf
ftell
fseek
fopen
fclose
fread
malloc
realloc
free
sscanf
_pctype
_isctype
__mb_cur_max
_vsnprintf
fmod
sqrt

kernel32

GetDriveTypeA
GetWindowsDirectoryA
GetVersionExA
OutputDebugStringA
InterlockedDecrement
InterlockedIncrement
Sleep
QueryPerformanceCounter
QueryPerformanceFrequency
SetEvent
TerminateThread
CreateThread
SetThreadPriority
GetCurrentThreadId
CreateFileA
GetProcAddress
GetSystemDirectoryA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
OpenFile
WaitForSingleObject
CloseHandle
MultiByteToWideChar
CreateEventA
WideCharToMultiByte
VirtualProtect
VirtualLock
DeviceIoControl
GetLastError
ResetEvent
DisableThreadLibraryCalls
LoadLibraryA

Exports

Exports

_FMUSIC_FreeSong@4
_FMUSIC_GetBPM@4
_FMUSIC_GetGlobalVolume@4
_FMUSIC_GetMasterVolume@4
_FMUSIC_GetName@4
_FMUSIC_GetNumChannels@4
_FMUSIC_GetNumInstruments@4
_FMUSIC_GetNumOrders@4
_FMUSIC_GetNumPatterns@4
_FMUSIC_GetNumSamples@4
_FMUSIC_GetOpenState@4
_FMUSIC_GetOrder@4
_FMUSIC_GetPattern@4
_FMUSIC_GetPatternLength@8
_FMUSIC_GetPaused@4
_FMUSIC_GetRealChannel@8
_FMUSIC_GetRow@4
_FMUSIC_GetSample@8
_FMUSIC_GetSpeed@4
_FMUSIC_GetTime@4
_FMUSIC_GetType@4
_FMUSIC_GetUserData@4
_FMUSIC_IsFinished@4
_FMUSIC_IsPlaying@4
_FMUSIC_LoadSong@4
_FMUSIC_LoadSongEx@24
_FMUSIC_OptimizeChannels@12
_FMUSIC_PlaySong@4
_FMUSIC_SetInstCallback@12
_FMUSIC_SetLooping@8
_FMUSIC_SetMasterSpeed@8
_FMUSIC_SetMasterVolume@8
_FMUSIC_SetOrder@8
_FMUSIC_SetOrderCallback@12
_FMUSIC_SetPanSeperation@8
_FMUSIC_SetPaused@8
_FMUSIC_SetReverb@4
_FMUSIC_SetRowCallback@12
_FMUSIC_SetSample@12
_FMUSIC_SetUserData@8
_FMUSIC_SetZxxCallback@8
_FMUSIC_StopAllSongs@0
_FMUSIC_StopSong@4
_FSOUND_3D_GetAttributes@12
_FSOUND_3D_GetMinMaxDistance@12
_FSOUND_3D_Listener_GetAttributes@32
_FSOUND_3D_Listener_SetAttributes@32
_FSOUND_3D_Listener_SetCurrent@8
_FSOUND_3D_SetAttributes@12
_FSOUND_3D_SetDistanceFactor@4
_FSOUND_3D_SetDopplerFactor@4
_FSOUND_3D_SetMinMaxDistance@12
_FSOUND_3D_SetRolloffFactor@4
_FSOUND_CD_Eject@4
_FSOUND_CD_GetNumTracks@4
_FSOUND_CD_GetPaused@4
_FSOUND_CD_GetTrack@4
_FSOUND_CD_GetTrackLength@8
_FSOUND_CD_GetTrackTime@4
_FSOUND_CD_GetVolume@4
_FSOUND_CD_OpenTray@8
_FSOUND_CD_Play@8
_FSOUND_CD_SetPaused@8
_FSOUND_CD_SetPlayMode@8
_FSOUND_CD_SetTrackTime@8
_FSOUND_CD_SetVolume@8
_FSOUND_CD_Stop@4
_FSOUND_Close@0
_FSOUND_DSP_ClearMixBuffer@0
_FSOUND_DSP_Create@12
_FSOUND_DSP_Free@4
_FSOUND_DSP_GetActive@4
_FSOUND_DSP_GetBufferLength@0
_FSOUND_DSP_GetBufferLengthTotal@0
_FSOUND_DSP_GetClearUnit@0
_FSOUND_DSP_GetClipAndCopyUnit@0
_FSOUND_DSP_GetFFTUnit@0
_FSOUND_DSP_GetMusicUnit@0
_FSOUND_DSP_GetPriority@4
_FSOUND_DSP_GetSFXUnit@0
_FSOUND_DSP_GetSpectrum@0
_FSOUND_DSP_MixBuffers@28
_FSOUND_DSP_SetActive@8
_FSOUND_DSP_SetPriority@8
_FSOUND_FX_Disable@4
_FSOUND_FX_Enable@8
_FSOUND_FX_SetChorus@32
_FSOUND_FX_SetCompressor@28
_FSOUND_FX_SetDistortion@24
_FSOUND_FX_SetEcho@24
_FSOUND_FX_SetFlanger@32
_FSOUND_FX_SetGargle@12
_FSOUND_FX_SetI3DL2Reverb@52
_FSOUND_FX_SetParamEQ@16
_FSOUND_FX_SetWavesReverb@20
_FSOUND_File_SetCallbacks@20
_FSOUND_GetAmplitude@4
_FSOUND_GetCPUUsage@0
_FSOUND_GetChannelsPlaying@0
_FSOUND_GetCurrentLevels@12
_FSOUND_GetCurrentPosition@4
_FSOUND_GetCurrentSample@4
_FSOUND_GetDriver@0
_FSOUND_GetDriverCaps@8
_FSOUND_GetDriverName@4
_FSOUND_GetError@0
_FSOUND_GetFrequency@4
_FSOUND_GetLoopMode@4
_FSOUND_GetMaxChannels@0
_FSOUND_GetMaxSamples@0
_FSOUND_GetMemoryStats@8
_FSOUND_GetMixer@0
_FSOUND_GetMute@4
_FSOUND_GetNumDrivers@0
_FSOUND_GetNumHWChannels@12
_FSOUND_GetNumHardwareChannels@0
_FSOUND_GetNumSubChannels@4
_FSOUND_GetOutput@0
_FSOUND_GetOutputHandle@0
_FSOUND_GetOutputRate@0
_FSOUND_GetPan@4
_FSOUND_GetPaused@4
_FSOUND_GetPriority@4
_FSOUND_GetReserved@4
_FSOUND_GetSFXMasterVolume@0
_FSOUND_GetSubChannel@8
_FSOUND_GetSurround@4
_FSOUND_GetVersion@0
_FSOUND_GetVolume@4
_FSOUND_Init@12
_FSOUND_IsPlaying@4
_FSOUND_PlaySound@8
_FSOUND_PlaySoundEx@16
_FSOUND_Record_GetDriver@0
_FSOUND_Record_GetDriverName@4
_FSOUND_Record_GetNumDrivers@0
_FSOUND_Record_GetPosition@0
_FSOUND_Record_SetDriver@4
_FSOUND_Record_StartSample@8
_FSOUND_Record_Stop@0
_FSOUND_Reverb_GetChannelProperties@8
_FSOUND_Reverb_GetProperties@4
_FSOUND_Reverb_SetChannelProperties@8
_FSOUND_Reverb_SetProperties@4
_FSOUND_Sample_Alloc@28
_FSOUND_Sample_Free@4
_FSOUND_Sample_Get@4
_FSOUND_Sample_GetDefaults@20
_FSOUND_Sample_GetDefaultsEx@32
_FSOUND_Sample_GetLength@4
_FSOUND_Sample_GetLoopPoints@12
_FSOUND_Sample_GetMinMaxDistance@12
_FSOUND_Sample_GetMode@4
_FSOUND_Sample_GetName@4
_FSOUND_Sample_Load@20
_FSOUND_Sample_Lock@28
_FSOUND_Sample_SetDefaults@20
_FSOUND_Sample_SetDefaultsEx@32
_FSOUND_Sample_SetLoopPoints@12
_FSOUND_Sample_SetMaxPlaybacks@8
_FSOUND_Sample_SetMinMaxDistance@12
_FSOUND_Sample_SetMode@8
_FSOUND_Sample_Unlock@20
_FSOUND_Sample_Upload@12
_FSOUND_SetBufferSize@4
_FSOUND_SetCurrentPosition@8
_FSOUND_SetDriver@4
_FSOUND_SetFrequency@8
_FSOUND_SetFrequencyEx@8
_FSOUND_SetHWND@4
_FSOUND_SetLoopMode@8
_FSOUND_SetMaxHardwareChannels@4
_FSOUND_SetMemorySystem@20
_FSOUND_SetMinHardwareChannels@4
_FSOUND_SetMixer@4
_FSOUND_SetMute@8
_FSOUND_SetOutput@4
_FSOUND_SetPan@8
_FSOUND_SetPanSeperation@4
_FSOUND_SetPaused@8
_FSOUND_SetPriority@8
_FSOUND_SetReserved@8
_FSOUND_SetSFXMasterVolume@4
_FSOUND_SetSpeakerMode@4
_FSOUND_SetSurround@8
_FSOUND_SetVolume@8
_FSOUND_SetVolumeAbsolute@8
_FSOUND_StopSound@4
_FSOUND_Stream_AddSyncPoint@12
_FSOUND_Stream_Close@4
_FSOUND_Stream_Create@20
_FSOUND_Stream_CreateDSP@16
_FSOUND_Stream_DeleteSyncPoint@4
_FSOUND_Stream_FindTagField@20
_FSOUND_Stream_GetLength@4
_FSOUND_Stream_GetLengthMs@4
_FSOUND_Stream_GetMode@4
_FSOUND_Stream_GetNumSubStreams@4
_FSOUND_Stream_GetNumSyncPoints@4
_FSOUND_Stream_GetNumTagFields@8
_FSOUND_Stream_GetOpenState@4
_FSOUND_Stream_GetPosition@4
_FSOUND_Stream_GetSample@4
_FSOUND_Stream_GetSyncPoint@8
_FSOUND_Stream_GetSyncPointInfo@8
_FSOUND_Stream_GetTagField@24
_FSOUND_Stream_GetTime@4
_FSOUND_Stream_Net_GetBufferProperties@12
_FSOUND_Stream_Net_GetLastServerStatus@0
_FSOUND_Stream_Net_GetStatus@20
_FSOUND_Stream_Net_SetBufferProperties@12
_FSOUND_Stream_Net_SetMetadataCallback@12
_FSOUND_Stream_Net_SetNetDataCallback@8
_FSOUND_Stream_Net_SetProxy@4
_FSOUND_Stream_Open@16
_FSOUND_Stream_Play@8
_FSOUND_Stream_PlayEx@16
_FSOUND_Stream_SetBufferSize@4
_FSOUND_Stream_SetEndCallback@12
_FSOUND_Stream_SetLoopCount@8
_FSOUND_Stream_SetLoopPoints@12
_FSOUND_Stream_SetMode@8
_FSOUND_Stream_SetPCM@8
_FSOUND_Stream_SetPosition@8
_FSOUND_Stream_SetSubStream@8
_FSOUND_Stream_SetSubStreamSentence@12
_FSOUND_Stream_SetSyncCallback@12
_FSOUND_Stream_SetTime@8
_FSOUND_Stream_Stop@4
_FSOUND_Update@0

Sections

.text
Size: 240KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.sdata Size: 512B - Virtual size: 144B

.rsrc Size: 99KB - Virtual size: 99KB

.reloc Size: 512B - Virtual size: 12B

a6570e6618ea090d44e3ac71ded61146

Headers

File Characteristics

Imports

user32

winmm

advapi32

ole32

msacm32

wsock32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 240KB - Virtual size: 236KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 64KB - Virtual size: 288KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 16KB - Virtual size: 12KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.sdata
Size: 512B - Virtual size: 144B

.rsrc
Size: 99KB - Virtual size: 99KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 240KB - Virtual size: 236KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 64KB - Virtual size: 288KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 16KB - Virtual size: 12KB