Static task
static1
Behavioral task
behavioral1
Sample
VirusShare-00fc1c4e48ac60a7fca865f5335f8589.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
VirusShare-00fc1c4e48ac60a7fca865f5335f8589.exe
Resource
win10v2004-20231215-en
General
-
Target
VirusShare-00fc1c4e48ac60a7fca865f5335f8589
-
Size
114KB
-
MD5
00fc1c4e48ac60a7fca865f5335f8589
-
SHA1
585f28c2a0aeb728e18f4cda7f10c02a084d09d1
-
SHA256
900d93f6af5ba4c297360990d8edec64ece01eaea0ccbc8c6cba056ab32368ca
-
SHA512
de004391448252b8ca0b5491edafbdecbb3eef41ed671fd8ed0d4983e65ed6a2046f3bc785f447876600994e5cff41075258ae5bbcb9cb25b04b18191928dae9
-
SSDEEP
1536:9nXZ6sugLaLHMrwElhZzriR3C+Dlpe3+qoovlAZS2Y5nPQU7iT4M3ItLDtewdtfa:FosCextrmy++3+qoulAZFrsRlewdtfa
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource VirusShare-00fc1c4e48ac60a7fca865f5335f8589
Files
-
VirusShare-00fc1c4e48ac60a7fca865f5335f8589.exe windows:4 windows x86 arch:x86
f433e7fcc51e68080022754836705744
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree
user32
MessageBoxA
Sections
.text Size: 80KB - Virtual size: 520KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
npwiigq7 Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bxswzxnk Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
vl3fcfgg Size: - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
uibvdrjo Size: 31KB - Virtual size: 32KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE