VirusShare-00e11f4756159e6772f6a4d7a4fa7a89 | Triage

Sharing

General

Target

VirusShare-00e11f4756159e6772f6a4d7a4fa7a89
Size

76KB
MD5

00e11f4756159e6772f6a4d7a4fa7a89
SHA1

61cf538da67c1a6b1cef287d3fc6570b21e5a038
SHA256

8ce74387bb230c633e2a917fbf37a2b72e9c044b972f121b970b2d43e98db416
SHA512

b64372c6bf18a68651c4a4afd2c6e61400d5be5364b8a33cec7f504f9825e185c14b2d9cd77398785c439c8f502d43939dd9441603c87a39dc9278519ba80358
SSDEEP

1536:G5MgJWUOT8lVqsLLq/a/OVw7op3cw3mmdrB8hdpjVrs2ryrd1vUQuq6:akTuPLh/OVLAYuHHs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare-00e11f4756159e6772f6a4d7a4fa7a89

Files

VirusShare-00e11f4756159e6772f6a4d7a4fa7a89
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

152b34a7fa47152e3621b2a74dd9dec5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugBreakProcess
lstrcpyA
GetProfileStringW
Beep
GetWindowsDirectoryA
SetLocaleInfoA
ResumeThread
HeapReAlloc
EnumSystemLanguageGroupsW
CopyFileExW
SetWaitableTimer
RemoveVectoredExceptionHandler

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE