1872a57f57bedf7ccc42c685257b3147

Sharing

Copy URL Twitter E-mail

General

Target

1872a57f57bedf7ccc42c685257b3147
Size

1.6MB
MD5

1872a57f57bedf7ccc42c685257b3147
SHA1

a71c30cfd63058efca4cbe56b1fef472e8432bcd
SHA256

5b21ae1615a944c7fb6a6a1c07c6dc3f76f7965642efbb308355442f94e8c68a
SHA512

31cb50d44b64c8ecf929122a957972d90b8ba2dc646844235094315f192afdfcb6cb47477135ea92a5e40068d93f139a2718075a9e31460e7643fc7cbf99aeaf
SSDEEP

49152:p1nJU/TztRczbi4/C02Tfu2d8zCrqlkHzF2d:jnS/TztRczbi4/C02TkzSekTsd

Score

3^/10

Malware Config

Signatures

Unsigned PE 14 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BearShare/BearShare/Resources-cs_CZ.dll
unpack001/BearShare/BearShare/Resources-de_DE.dll
unpack001/BearShare/BearShare/Resources-en_US.dll
unpack001/BearShare/BearShare/Resources-es_ES.dll
unpack001/BearShare/BearShare/Resources-fr_FR.dll
unpack001/BearShare/BearShare/Resources-ja_JP.dll
unpack001/BearShare/BearShare/Resources-ko_KR.dll
unpack001/BearShare/BearShare/Resources-nl_NL.dll
unpack001/BearShare/BearShare/Resources-pl_PL.dll
unpack001/BearShare/BearShare/Resources-ru_RU.dll
unpack001/BearShare/BearShare/Resources-tr_TR.dll
unpack001/BearShare/BearShare/Resources-zh_CN.dll
unpack001/BearShare/BearShare/Resources-zh_TW.dll
unpack001/BearShare/BearShare/setup.exe

Files

1872a57f57bedf7ccc42c685257b3147
.rar
BearShare/BearShare/Resources-cs_CZ.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 107B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 552KB - Virtual size: 550KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-de_DE.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 560KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-en_US.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 552KB - Virtual size: 551KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-es_ES.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 556KB - Virtual size: 554KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-fr_FR.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 556KB - Virtual size: 555KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-ja_JP.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 540KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-ko_KR.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 540KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-nl_NL.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 107B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 556KB - Virtual size: 554KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-pl_PL.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 556KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-ru_RU.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 556KB - Virtual size: 553KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-tr_TR.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 552KB - Virtual size: 550KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-zh_CN.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 532KB - Virtual size: 531KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/Resources-zh_TW.dll
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 4KB - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 536KB - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BearShare/BearShare/setup.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
BearShare/BearShare/xman.cdf

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 107B

.rsrc Size: 552KB - Virtual size: 550KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 108B

.rsrc Size: 560KB - Virtual size: 556KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 109B

.rsrc Size: 552KB - Virtual size: 551KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 109B

.rsrc Size: 556KB - Virtual size: 554KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 108B

.rsrc Size: 556KB - Virtual size: 555KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 110B

.rsrc Size: 540KB - Virtual size: 538KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 108B

.rsrc Size: 540KB - Virtual size: 538KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 107B

.rsrc Size: 556KB - Virtual size: 554KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 108B

.rsrc Size: 556KB - Virtual size: 552KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 109B

.rsrc Size: 556KB - Virtual size: 553KB

.reloc Size: 4KB - Virtual size: 8B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 4KB - Virtual size: 109B

.rdata
Size: 4KB - Virtual size: 107B

.rsrc
Size: 552KB - Virtual size: 550KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 108B

.rsrc
Size: 560KB - Virtual size: 556KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 109B

.rsrc
Size: 552KB - Virtual size: 551KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 109B

.rsrc
Size: 556KB - Virtual size: 554KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 108B

.rsrc
Size: 556KB - Virtual size: 555KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 110B

.rsrc
Size: 540KB - Virtual size: 538KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 108B

.rsrc
Size: 540KB - Virtual size: 538KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 107B

.rsrc
Size: 556KB - Virtual size: 554KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 108B

.rsrc
Size: 556KB - Virtual size: 552KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 109B

.rsrc
Size: 556KB - Virtual size: 553KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 109B

.rsrc
Size: 552KB - Virtual size: 550KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 110B

.rsrc
Size: 532KB - Virtual size: 531KB

.reloc
Size: 4KB - Virtual size: 8B

.rdata
Size: 4KB - Virtual size: 110B

.rsrc
Size: 536KB - Virtual size: 532KB

.reloc
Size: 4KB - Virtual size: 8B

CODE
Size: 91KB - Virtual size: 91KB

DATA
Size: 2KB - Virtual size: 1KB

BSS
Size: - Virtual size: 2KB

.idata
Size: 5KB - Virtual size: 5KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 27KB - Virtual size: 27KB