VirusShare-0066cdd7aef6c2be5b6c5190a4fa3490 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare-0066cdd7aef6c2be5b6c5190a4fa3490
Size

123KB
MD5

0066cdd7aef6c2be5b6c5190a4fa3490
SHA1

07ff0c71c0a3fa713e6c7912cf92b0123d16f0ff
SHA256

9dbaa90e27562416cf7ea6ebada615a97e34c99a91975043262b4a63369daac0
SHA512

e3641f33f7ec204df6961b53c3127fc02aba61f082edac1858472d44d4c82cecd190936f812c7119912a58ea8c49354a156fd7e3559ebd01d045ddd52664cc34
SSDEEP

3072:o6dUwZLqFpOmAS+QowN+2oNmHD9Egg3p6:GwZtQowNwahpg5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare-0066cdd7aef6c2be5b6c5190a4fa3490

Files

VirusShare-0066cdd7aef6c2be5b6c5190a4fa3490
.exe windows:4 windows x86 arch:x86

ca9a71a5142671e60e98d85d0f9d3e56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkMode
GetBitmapBits
CreateFontIndirectA
GetBkColor
GetDIBits
SetPixel
CreateCompatibleDC

advapi32

GetLengthSid
RegQueryValueA
RegDeleteKeyA

comctl32

ImageList_DragShowNolock
ImageList_Remove
ImageList_Write
ImageList_Create
ImageList_Read
ImageList_Add
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Destroy

kernel32

ResetEvent
SetFilePointer
ReadFile
GetProcessHeap
SetEvent
SetEndOfFile
SetErrorMode
IsBadReadPtr
LoadLibraryA
VirtualAllocEx
ExitProcess

user32

GetIconInfo
GetForegroundWindow
GetMenu
LoadCursorA
GetFocus

Exports

Exports

_5KdCM@24
vsUKoMtBsO@12

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ