VirusShare-005cb813e93692c0028e6db873824f84 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare-005cb813e93692c0028e6db873824f84
Size

20KB
MD5

005cb813e93692c0028e6db873824f84
SHA1

b5229b0a57991450473161c08b589f0339fe5ef7
SHA256

331d81cff65f0aa60d71b5cf2b48917b49473b745f90dfcad9dd4c9fbb4800d7
SHA512

a17ca5844f527c8a564818e60c33ea48c8e6ea8f3ef09988b39b025171ad4a2cc8003f26cbfc0cf3fe19922dd503726173dc96903b43d82b3d057a34ed7f0cf4
SSDEEP

384:bQ4nsZDY8H3Hb+b0qrIINEvErj3Vjfqo8RCWNMWNqc:bQ4s+vbNEvsQo8RJr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare-005cb813e93692c0028e6db873824f84

Files

VirusShare-005cb813e93692c0028e6db873824f84
.dll windows:5 windows x86 arch:x86

f09655e957378354dddab4d2f95d5da2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
lstrlenA
GetProcAddress
LoadLibraryA
WriteFile
SetFilePointer
GetFileSize
ReadFile
GetTickCount
lstrcatA
lstrcpyA
Sleep
WaitForSingleObject
GetModuleFileNameA
IsDebuggerPresent
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
RtlUnwind

shlwapi

StrStrIA

Exports

Exports

MenuDialog

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ