VirusShare-0145742364384d8508d0ecb4e62e9f2c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare-0145742364384d8508d0ecb4e62e9f2c
Size

19KB
MD5

0145742364384d8508d0ecb4e62e9f2c
SHA1

c60fbf92fdbf6cced83128f239f5ac6014d3cf69
SHA256

917831d74d675f28bc18b70aef9d3757cd15b81ab7d15bbf2a7bebfc14e78503
SHA512

4528eae01567174e2b2272c7ddd12f9984e3ece35df81253b3e6b8b5d18345b7261dddeb9df138f9c51ec78ce83cdc0e4ac3fcb0cca6c84d4c73d5df113685ad
SSDEEP

192:61wPWj85FF3WxC6llUebVufxbaaaJbdcW77r75i1XX1V8yarJq5VHtHX/Z5Hd22R:gkP5nYsqWkaaJbdcolc1V8yAJq7H5DHL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare-0145742364384d8508d0ecb4e62e9f2c

Files

VirusShare-0145742364384d8508d0ecb4e62e9f2c
.exe windows:4 windows x86 arch:x86

9ddfa354c9531456429d45d91b024cdf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
WaitForSingleObject
TlsFree
GetVersion
TlsGetValue
GetProfileIntA
GlobalUnlock
WaitForMultipleObjects
GetStdHandle
lstrlenA
GetSystemDefaultLangID
CompareFileTime
GetModuleHandleA
GetTickCount
CloseHandle
VirtualProtect
HeapCreate
AddAtomA
InterlockedExchange
HeapReAlloc
GetConsoleCP

user32

PaintDesktop
SubtractRect
DestroyMenu
SetWindowPos
CreateCaret
TranslateMessage
GetKeyState
ModifyMenuA
GetMenuStringA
CreateCursor
MessageBoxA
EnableScrollBar
GetDlgItem
GetKeyboardLayout
ShowWindow
FindWindowA
CopyRect
DispatchMessageA
EqualRect
PostMessageA
InsertMenuA
UpdateWindow
DialogBoxParamA
SetPropA
GetWindowTextA

msi

MsiCloseHandle
MsiDoActionA
MsiEnumProductsA
MsiEnumClientsA
MsiGetMode

ws2_32

WSAAccept

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ