AutoCracker zipped[.]zip

Resubmissions

21/09/2024, 15:42

240921-s5e35azejc 3

21/09/2024, 12:42

240921-pxvxtsseqc 7

Sharing

Copy URL

Twitter E-mail

General

Target

AutoCracker zipped.zip
Size

16.8MB
MD5

b25719f0595b0e24c83059337e7fd7f1
SHA1

7112d625a3173bdaf4d446224396c9bc48688a40
SHA256

d2c4a176fef00bd8d33a69033d8bc3a9b9ca9dab0229a01dfdf27110abd56f3c
SHA512

fa1e1a958688db9e14769bdebbc6ced4d768d21098770fe97564c4997efd2579ee627b5912c56b040eeb29447cc28fa0a20a7b019e582df4280491c9e02347ac
SSDEEP

393216:hS5W6QRKtXwwFf4H/M/8bVF4PE0nO1ipCu:eWMXpFfzmF4ZmWCu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AutoCracker zipped/Dev_Dragon TP/KMS_BETA.exe

Files

AutoCracker zipped.zip
.zip

Password: 1111
AutoCracker zipped/Dev_Dragon TP/KMSAuto++.ini
AutoCracker zipped/Dev_Dragon TP/KMS_BETA.exe
.exe windows:5 windows x64 arch:x64

Password: 1111

6383731e58b0bbb1a4339f8c5e6fc9bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

memset
setlocale
memcpy
log10
_wfopen
fseek
fclose
wcslen
wcscpy
wcscat
wcsncpy
malloc
free
memcmp
memmove
strncmp
isdigit
wcscmp
_stricmp
sscanf
sprintf
strcpy
strlen
strcat
_wstat
_wcsdup
strcmp
fread
longjmp
setjmp
ftell
strncpy
_wcsnicmp
_wcsicmp
wcsncmp
_snwprintf
tolower
floor
_localtime64
_mktime64
sqrtf
abs
sinf
cosf
fmodf
pow
??3@YAXPEAX@Z
??2@YAPEAX_K@Z
wcsstr
swscanf
_close
calloc
_errno
_lseeki64
realloc
_snprintf
abort
_wopen
_setmode
exit
wcschr
_open_osfhandle
_strdup
strrchr
wctomb
_get_osfhandle
_open
toupper
mbstowcs
strchr
frexp
modf
fopen
strerror
atof
_gmtime64
fflush
fwrite
_fdopen
__iob_func
strtol
strtoul
_time64
qsort
fputs
strstr
strpbrk
atoi
_stat64
_access
_read
_write
memchr
fputc
strspn
strcspn
getenv
fgets
isupper
_vsnwprintf
??1type_info@@UEAA@XZ
?terminate@@YAXXZ
__C_specific_handler
ceil

kernel32

GetModuleHandleW
HeapCreate
GetEnvironmentVariableW
CreateSemaphoreW
GetLastError
CloseHandle
HeapDestroy
ExitProcess
GetCurrentThreadId
Sleep
CreateToolhelp32Snapshot
GetCurrentProcess
OpenProcess
TerminateProcess
CreateProcessW
GetExitCodeThread
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
CreateThread
TerminateThread
HeapAlloc
HeapFree
FreeLibrary
LoadLibraryExW
GetProcAddress
GetCurrentProcessId
MultiByteToWideChar
GetModuleFileNameW
GetCommandLineW
DuplicateHandle
CreatePipe
GetStdHandle
PeekNamedPipe
GetExitCodeProcess
ReadFile
SetEnvironmentVariableW
HeapReAlloc
CreateFileW
GetFileSize
SetFilePointer
SetEndOfFile
WriteFile
DeleteFileW
TlsAlloc
TlsSetValue
GetTickCount
TlsGetValue
LoadLibraryW
GetVersionExW
SetLastError
GetDriveTypeW
FindFirstFileW
FindClose
GetFileAttributesW
FindNextFileW
SetFileAttributesW
RemoveDirectoryW
SetCurrentDirectoryW
CreateDirectoryW
GetCurrentDirectoryW
CopyFileW
GetTempPathW
GetLongPathNameW
MulDiv
GetLocalTime
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
HeapSize
TlsFree
DeleteCriticalSection
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
IsValidCodePage
GetACP
GetOEMCP
GetFileType
GetFileInformationByHandle
GetFileAttributesA
CreateFileA
GetFullPathNameW
GetModuleHandleA
LoadLibraryA
GetSystemDirectoryA
VerSetConditionMask
VerifyVersionInfoA
QueryPerformanceFrequency
SleepEx
QueryPerformanceCounter
ExpandEnvironmentStringsA
FormatMessageA
GetFileSizeEx
UnregisterWait
GetCurrentThread
RegisterWaitForSingleObject

user32

SendMessageW
OemToCharW
GetSysColor
UpdateWindow
GetDlgCtrlID
CallWindowProcW
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
FillRect
GetClassNameW
GetWindow
SetWindowPos
InvalidateRect
GetKeyState
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SystemParametersInfoW
LockSetForegroundWindow
AllowSetForegroundWindow
SetForegroundWindow
IsIconic
ShowWindow
EnableWindow
RedrawWindow
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
IsWindowEnabled
SetClassLongPtrW
GetClassLongPtrW
PeekMessageW
TranslateMessage
DispatchMessageW
GetWindowRect
OffsetRect
IsRectEmpty
MapWindowPoints
SubtractRect
IsWindow
GetParent
GetDC
ReleaseDC
BeginPaint
EndPaint
DefWindowProcW
GetAsyncKeyState
KillTimer
GetCursorPos
ScreenToClient
SetTimer
DrawTextW
FrameRect
InflateRect
FindWindowW
FindWindowExW
DrawFrameControl
GetWindowTextW
CharToOemW
LoadIconW
RegisterClassExW
CreateWindowExW
GetWindowTextLengthW
DestroyWindow
SetFocus
UnregisterClassW
LoadCursorW
GetSystemMetrics
CreateAcceleratorTableW
BringWindowToTop
GetMessageW
TranslateAcceleratorW
IsDialogMessageW
DestroyAcceleratorTable
MessageBoxW
IsWindowVisible
EnumWindows
SetMenu
DestroyMenu
EnableMenuItem
TrackPopupMenu
GetMenuItemInfoW
ModifyMenuW
SetMenuItemInfoW
CreatePopupMenu
AppendMenuW
SetWindowTextW
MoveWindow
IntersectRect
ValidateRect
GetUpdateRect
GetSysColorBrush
PostMessageW
GetIconInfo
DrawStateW
GetFocus
DrawFocusRect
RemovePropW
GetPropW
SetPropW
SetScrollPos
GetWindowDC
SetRect
GetWindowLongW
SetCursor
GetMessagePos
ReleaseCapture
SetCapture
ClipCursor
GetCapture
ChildWindowFromPointEx
ClientToScreen
EnumPropsExW
SetActiveWindow
DestroyIcon
MsgWaitForMultipleObjects
GetActiveWindow
IsZoomed
GetMenu
AdjustWindowRectEx
RegisterClassW
DefFrameProcW
EnumChildWindows
IsChild
RegisterWindowMessageW
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetClipboardData
DrawIconEx
CopyImage
CreateIconFromResourceEx
CreateIconFromResource
CharUpperW
CharLowerW

gdi32

CreatePen
CreateSolidBrush
SelectObject
DeleteDC
DeleteObject
CreatePatternBrush
CreateRoundRectRgn
GetPixel
CreateCompatibleDC
SelectClipRgn
BitBlt
GetStockObject
RoundRect
SetBkMode
SetTextColor
SetDCBrushColor
SetBrushOrgEx
CreateFontIndirectW
CreateCompatibleBitmap
OffsetViewportOrgEx
SetViewportOrgEx
GetTextExtentPoint32W
SetBkColor
CreateRectRgn
GetObjectW
GetObjectType
ExcludeClipRect
CreateRectRgnIndirect
TextOutW
MoveToEx
LineTo
CreateDIBSection
GdiGetBatchLimit
GdiSetBatchLimit
CreateDCW
GetClipRgn
ExtSelectClipRgn
GetDeviceCaps
GetDIBits
SetTextAlign
SetStretchBltMode
StretchBlt
SelectPalette
RealizePalette
SetPixelV
Rectangle
Ellipse
StretchDIBits
SetROP2
ExtFloodFill
GetTextMetricsW
CreateBitmap
SetPixel
GetObjectA
CreateFontW

advapi32

OpenSCManagerW
OpenServiceW
CloseServiceHandle
RegOpenKeyExW
RegOpenKeyW
RegConnectRegistryW
RegQueryValueExW
RegCloseKey
QueryServiceStatus
RegSetValueExW
RegDeleteKeyW
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash

ole32

CoInitialize
CoCreateInstance
CoUninitialize
RevokeDragDrop

shell32

ShellExecuteExW

ws2_32

closesocket
WSACleanup
WSAStartup
socket
inet_addr
gethostbyname
htons
ioctlsocket
connect
select
__WSAFDIsSet
recvfrom
recv
bind
send
sendto
WSAGetLastError
ntohs
WSASetLastError
getsockopt
setsockopt
getpeername
getsockname
WSAIoctl
getaddrinfo
freeaddrinfo
htonl
listen
accept
gethostname
ntohl

crypt32

CertFreeCertificateContext
CertOpenStore
CryptStringToBinaryA
CertFindCertificateInStore
CertCloseStore
CertEnumCertificatesInStore
CertCreateCertificateChainEngine
CertGetCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateChain
CryptQueryObject
CertAddCertificateContextToStore
CertGetNameStringA

shlwapi

PathMatchSpecW

winmm

timeBeginPeriod

msimg32

AlphaBlend

gdiplus

GdipDeleteFont
GdipDeleteGraphics
GdipDeletePath
GdipDeleteMatrix
GdipDeletePen
GdipDeleteStringFormat
GdipFree
GdipGetDpiX
GdipGetDpiY
GdiplusStartup
GdipCreateFontFromDC
GdipCreateFromHDC
GdipCreatePath
GdipCreateMatrix
GdipCreatePen1
GdipCreateSolidFill
GdipDeleteBrush
GdipAlloc
GdipCloneBrush
GdipCloneStringFormat
GdipStringFormatGetGenericTypographic
GdipGetStringFormatFlags
GdipScaleMatrix
GdipSetCompositingMode
GdipSetStringFormatFlags
GdipSetInterpolationMode
GdipSetPageUnit
GdipSetSmoothingMode
GdipSetTextRenderingHint
GdipTranslateWorldTransform
GdipTranslateMatrix
GdipStartPathFigure
GdipCreateBitmapFromScan0
GdipCreateBitmapFromHICON
GdipCreateBitmapFromGdiDib
GdipCreateImageAttributes
GdipDisposeImage
GdipDisposeImageAttributes
GdipCloneImage
GdipDrawImageRectRect
GdipGetImageBounds
GdipGetImageHeight
GdipGetImageWidth
GdipImageRotateFlip
GdipSetImageAttributesColorMatrix
GdipVectorTransformMatrixPoints
GdipCreateFontFromLogfontA
GdipCreateFont
GdipDeleteFontFamily
GdipGetFamily
GdipGetFontSize
GdipGetFontStyle
GdipInvertMatrix
GdipMultiplyMatrix
GdipMultiplyWorldTransform
GdipTransformPath
GdipTransformMatrixPoints
GdipSetMatrixElements

uxtheme

SetWindowTheme

comdlg32

GetSaveFileNameW
GetOpenFileNameW

comctl32

InitCommonControlsEx
_TrackMouseEvent
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon
ImageList_Remove
ImageList_AddMasked
ImageList_Destroy
ImageList_Create

Sections

.code
Size: 410KB - Virtual size: 409KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 996KB - Virtual size: 995KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 269KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25.6MB - Virtual size: 25.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
AutoCracker zipped/Dev_Dragon TP/New Text Document.txt
AutoCracker zipped/Dev_Dragon TP/desktop.ini

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: 1111

Password: 1111

6383731e58b0bbb1a4339f8c5e6fc9bf

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

ole32

shell32

ws2_32

crypt32

shlwapi

winmm

msimg32

gdiplus

uxtheme

comdlg32

comctl32

Sections

.code Size: 410KB - Virtual size: 409KB

.text Size: 996KB - Virtual size: 995KB

.rdata Size: 269KB - Virtual size: 268KB

.pdata Size: 50KB - Virtual size: 49KB

.data Size: 25.6MB - Virtual size: 25.6MB

.rsrc Size: 48KB - Virtual size: 47KB

.code
Size: 410KB - Virtual size: 409KB

.text
Size: 996KB - Virtual size: 995KB

.rdata
Size: 269KB - Virtual size: 268KB

.pdata
Size: 50KB - Virtual size: 49KB

.data
Size: 25.6MB - Virtual size: 25.6MB

.rsrc
Size: 48KB - Virtual size: 47KB