2024-10-03_9464d76fe0b25e3376a77d25dbff9366_avoslocker

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-03_9464d76fe0b25e3376a77d25dbff9366_avoslocker
Size

2.2MB
MD5

9464d76fe0b25e3376a77d25dbff9366
SHA1

6a178e85fd3f57aaca45e1b1473968ebbb6b4704
SHA256

9291562c76d9807b8ff910cc55060a57f229dd249689e1d599232f43206541bf
SHA512

39dee1841e3639f983ed7a034c6be79df3c3d8c9627c45579ad723898d27a9827a3aa22d180b9c2cb61e47ae8dc38abd6fb673da7987ff019cd649fb98fd2e2d
SSDEEP

49152:2P5dJr6CUj69S72fp0zOdGoVZLHQryXySRtY3JvzuXADmg27RnWGj:2PzJez6QfoVZjQryX/oD527BWG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-03_9464d76fe0b25e3376a77d25dbff9366_avoslocker

Files

2024-10-03_9464d76fe0b25e3376a77d25dbff9366_avoslocker
.exe windows:6 windows x86 arch:x86

aaf1f6a117fc8f533db7b65e4eb3158a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\SarmahRu\Desktop\Vision_Release\VisionDiagnostics\Diagnostics\DL\video-diags\Release\video-diags.pdb

Imports

powrprof

PowerGetActiveScheme
PowerSetActiveScheme
CallNtPowerInformation
PowerWriteDCValueIndex
PowerWriteACValueIndex

ddraw

DirectDrawCreateEx
DirectDrawCreate
DirectDrawEnumerateExA

kernel32

FormatMessageA
GetLocaleInfoEx
EncodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
SetLastError
TlsAlloc
GetFileAttributesA
lstrcpynA
CloseHandle
WriteFile
ReadFile
CreateFileA
GetEnvironmentVariableA
DeleteCriticalSection
InitializeCriticalSectionEx
GetLastError
RaiseException
DecodePointer
Sleep
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
WriteConsoleW
HeapReAlloc
HeapSize
SetEndOfFile
SetStdHandle
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
CreateDirectoryW
FlushFileBuffers
GetFileAttributesExW
CreateProcessW
GetExitCodeProcess
GetFileSizeEx
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
HeapFree
HeapAlloc
GetTimeZoneInformation
GetConsoleOutputCP
ReadConsoleW
GetConsoleMode
GetFileType
CreateFileW
SetFilePointerEx
UnlockFileEx
LockFileEx
GetCommandLineW
GetCommandLineA
GetStdHandle
GetModuleFileNameW
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ResumeThread
ExitThread
GetCurrentDirectoryW
SetCurrentDirectoryW
SetEnvironmentVariableW
GetFullPathNameW
GetDriveTypeW
UnhandledExceptionFilter
GetTickCount
GetPrivateProfileStringW
GetCurrentThreadId
GetModuleFileNameA
DeviceIoControl
GetCurrentProcess
GetCurrentThread
IsWow64Process
MultiByteToWideChar
WideCharToMultiByte
SetConsoleCtrlHandler
VerSetConditionMask
VerifyVersionInfoW
LocalFree
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileSectionA
WritePrivateProfileSectionA
WritePrivateProfileStringW
WritePrivateProfileSectionW
ReleaseSemaphore
ReleaseMutex
WaitForSingleObject
CreateMutexA
GetCurrentProcessId
CreateThread
OpenMutexA
CreateSemaphoreA
LocalAlloc
GetFullPathNameA
OutputDebugStringA
GetPrivateProfileSectionNamesA
WritePrivateProfileStructA
LoadLibraryA
FreeLibrary
GetProcAddress
GetConsoleWindow
DuplicateHandle
SetErrorMode
TerminateThread
GetExitCodeThread
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
IsProcessorFeaturePresent
IsDebuggerPresent
OutputDebugStringW
SetUnhandledExceptionFilter
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
TerminateProcess
QueryPerformanceFrequency

user32

PostMessageA
DefWindowProcA
CallWindowProcA
RegisterClassA
CreateWindowExA
CreateWindowExW
DestroyWindow
ShowWindowAsync
MoveWindow
SetWindowPos
GetDlgItem
SetDlgItemTextW
GetDlgItemTextA
GetFocus
SetTimer
EnableWindow
SetActiveWindow
BeginPaint
EndPaint
InvalidateRect
ValidateRect
RedrawWindow
SetScrollPos
SendMessageA
ShowScrollBar
GetWindowTextW
GetClientRect
GetWindowRect
GetSysColorBrush
GetWindowLongA
SetWindowLongA
SetClassLongA
FindWindowA
FindWindowExA
GetClassNameA
GetWindow
LoadCursorA
IsDialogMessageA
SetScrollInfo
FillRect
GetScrollPos
GetParent
PostQuitMessage
ShowWindow
ShowCursor
GetDesktopWindow
LoadImageA
RegisterClassExA
ChangeDisplaySettingsExW
KillTimer
SetRect
UpdateWindow
GetMonitorInfoA
EnumDisplayMonitors
IsIconic
RegisterClassW
DispatchMessageA
TranslateMessage
GetMessageA
RegisterWindowMessageA
GetWindowThreadProcessId
SetForegroundWindow
GetForegroundWindow
SetFocus
AttachThreadInput
wsprintfW
ChangeDisplaySettingsA
GetSystemMetrics
EnumDisplaySettingsExA
UnregisterClassA
wsprintfA
DrawTextW
EnumDisplaySettingsA
EnumDisplayDevicesA
GetDC
ReleaseDC
ChangeDisplaySettingsExA
FrameRect

gdi32

RealizePalette
SelectPalette
SetPixelFormat
UpdateColors
SwapBuffers
UnrealizeObject
LineTo
GetCurrentPositionEx
DescribePixelFormat
CreatePen
SetPixelV
SetMapMode
GetMapMode
CreateCompatibleBitmap
CreateDCA
CreatePalette
DeleteDC
DeleteObject
GetDeviceCaps
GetDIBits
GetPixel
RestoreDC
SaveDC
SelectObject
SetBkColor
SetTextColor
GetTextMetricsA
TextOutA
DPtoLP
BitBlt
CreateCompatibleDC
CreateSolidBrush
TextOutW
GetPixelFormat
ChoosePixelFormat
CreateFontIndirectA
GetObjectA
GetTextMetricsW
SetBkMode
GetStockObject
MoveToEx

shell32

SHAppBarMessage

ole32

CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateInstance
CoInitialize
OleRun

oleaut32

VariantInit
SysFreeString
SysAllocString
GetErrorInfo
VariantClear
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
SetErrorInfo
SafeArrayGetUBound
SysStringLen
SafeArrayGetLBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
CreateErrorInfo

gdiplus

GdipCreateBitmapFromScan0
GdiplusStartup
GdipGraphicsClear
GdipDrawLineI
GdipAlloc
GdipDrawImageI
GdipFree
GdipGetImageGraphicsContext
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdiplusShutdown
GdipCloneImage
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRect
GdipReleaseDC
GdipCreateFromHDC
GdipDeleteGraphics
GdipCreatePen1

setupapi

CM_Locate_DevNodeA
CM_Disable_DevNode
CM_Get_DevNode_Status_Ex
CM_Enable_DevNode
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsExA
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstanceIdA
CM_Get_Next_Res_Des
CM_Get_First_Log_Conf
CM_Get_Sibling
CM_Get_Res_Des_Data_Size
CM_Get_Res_Des_Data
CM_Get_Parent
CM_Free_Log_Conf_Handle
CM_Free_Res_Des_Handle
CM_Get_Child
CM_Get_Device_IDA
CM_Get_Device_ID_ExA
CM_Get_Device_ID_Size
CM_Get_DevNode_Registry_PropertyA
CM_Get_DevNode_Status

dxgi

CreateDXGIFactory1

opengl32

wglCreateContext
glViewport
glVertex3f
glTexParameteri
glTexImage2D
glTexImage1D
glTexEnvi
glTexCoord2f
glShadeModel
glRotatef
glPushMatrix
glPopMatrix
glPixelStorei
glOrtho
glNewList
glMatrixMode
glLoadIdentity
glGenLists
glFlush
glEndList
glEnd
glEnable
glClear
glCallList
glBegin
wglMakeCurrent
wglDeleteContext

advapi32

OpenServiceA
OpenProcessToken
OpenThreadToken
AllocateAndInitializeSid
EqualSid
FreeSid
GetTokenInformation
CloseServiceHandle
CreateServiceA
RegOpenKeyExA
DeleteService
OpenSCManagerA
RegQueryValueExA
StartServiceA
RegCloseKey
IsTextUnicode

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 233KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 632KB - Virtual size: 636KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aaf1f6a117fc8f533db7b65e4eb3158a

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

powrprof

ddraw

kernel32

user32

gdi32

shell32

ole32

oleaut32

gdiplus

setupapi

dxgi

opengl32

advapi32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 233KB - Virtual size: 233KB

.data Size: 17KB - Virtual size: 232KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 632KB - Virtual size: 636KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 233KB - Virtual size: 233KB

.data
Size: 17KB - Virtual size: 232KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 632KB - Virtual size: 636KB