VirusShare-01282ad72ead6fc92b2cc4a18c833adf

General

Target

VirusShare-01282ad72ead6fc92b2cc4a18c833adf
Size

167KB
MD5

01282ad72ead6fc92b2cc4a18c833adf
SHA1

086cff958a2726fa872905edbf3b5e593ec81c46
SHA256

c67db6af5873a558145452341e34de74eda78cec7ef33921d2885038a1e6aaaa
SHA512

8e21f3bd8adefb712adac80f405b66d3e8ae7b7704a94965a46c543b52bb245b8f76e995895867ab898632e3cdde2b52728f718d4e12f43f5770e4a9b86b8543
SSDEEP

3072:ryRkg00/Z/mHbMGtdYZ/Ii3doj9NOapGf/RfFKWqF8t4bw8:rOJ00/Z/m7jtdYZ/b3Khky6nKvF8WbP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare-01282ad72ead6fc92b2cc4a18c833adf

Files

VirusShare-01282ad72ead6fc92b2cc4a18c833adf
.exe windows:4 windows x86 arch:x86

fb9e3a0347128318ec6e569fa68a70e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetModuleFileNameW
lstrlenW
ExpandEnvironmentStringsW
ReadFile
SetFilePointer
GetFileSize
DuplicateHandle
GetFileAttributesW
GetCurrentProcess
LocalFree
GetProcAddress
GetModuleHandleW
HeapAlloc
GetProcessHeap
GetLastError
CreateProcessW
WaitForSingleObject
OpenMutexW
CreateMutexW
CreateFileW
WriteFile
GetSystemDirectoryW
CloseHandle
GetFileTime
SetFileTime
OpenProcess
GetStartupInfoW

advapi32

AddAccessAllowedAce
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
GetTokenInformation
LookupAccountSidW
GetLengthSid
InitializeAcl
SetNamedSecurityInfoW
GetNamedSecurityInfoW
GetAce
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges

shell32

ShellExecuteW

msvcrt

__CxxFrameHandler
??3@YAXPAX@Z
??2@YAPAXI@Z
wcscat
swprintf
_beginthreadex
_wcsicmp
wcschr
wcscpy
_wcsnicmp
wcslen
_exit
_XcptFilter
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fb9e3a0347128318ec6e569fa68a70e9

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

msvcrt

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 2KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 2KB