VirusShare-0087f55a46137e46fb5689ac9744b1d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare-0087f55a46137e46fb5689ac9744b1d6
Size

64KB
MD5

0087f55a46137e46fb5689ac9744b1d6
SHA1

9e87a61a107305b0ae7904ca408acbb2e616c7d4
SHA256

de8d70f0337a894d262657692e75c2ef69ad36d8f8262027cc02ae392add210a
SHA512

d2b211125f913ea1e8dc12888e7e2aa5865168e248689c7a6ae066f6f64d907e2c87cf27b2cc9a6c0219163803e7dac69a9d0557a916fc95ee8f35844710d814
SSDEEP

1536:Ij5AtBwKc2nfYNhkAhVcuvjd9Abd5zUEKoqRzX:I0BJc2fYnVcuW/tKoC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare-0087f55a46137e46fb5689ac9744b1d6

Files

VirusShare-0087f55a46137e46fb5689ac9744b1d6
.exe windows:4 windows x86 arch:x86

6a3909891b37c0af0de26a520854b428

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetContextToken
CLSIDFromProgID
CoTaskMemFree

kernel32

VirtualAllocEx
WriteFile
WideCharToMultiByte
VirtualQuery
ExitProcess
LoadLibraryA
lstrcpyA
GetLastError
WaitForSingleObject
GetOEMCP
IsBadHugeReadPtr

oleaut32

SysAllocStringLen
SysFreeString
SafeArrayGetUBound
GetErrorInfo
SafeArrayPtrOfIndex
VariantCopyInd
SafeArrayCreate
SafeArrayUnaccessData
OleLoadPicture

gdi32

SaveDC
SetBkColor
GetTextAlign
RestoreDC
LineTo

user32

GetMenuStringA
GetMenuState
GetMenuItemCount
GetCursor
CharUpperA
GetMenuItemInfoA
GetTopWindow
GetMenu
GetMenuItemID
GetMessagePos

Exports

Exports

_S2ZtYr85Y0I
_TsFaEyYFPAXLpH@8
_cmq4jT@20
_hNpV1AhV
_S9TdwxT8Z8v@24

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ