Static task
static1
Behavioral task
behavioral1
Sample
VirusShare-014d24e041b8dc17094456a2d11e1936.exe
Resource
win7-20231215-en
General
-
Target
VirusShare-014d24e041b8dc17094456a2d11e1936
-
Size
77KB
-
MD5
014d24e041b8dc17094456a2d11e1936
-
SHA1
5aa58ad51ecfb7730eda2ee59dbc70afae9730e2
-
SHA256
540183858908a6f339ee660511e8604bec1930e540c774edff2e4975d30bc3db
-
SHA512
da0f349e3bb5d45fc7780643a571345a2fc8e29e87b7da4011265985d444871f044884b551cb69b4a568c4ae6aa7d7f0c9730899b7cab73e4af58d694b9be831
-
SSDEEP
1536:OMRReX6I69jYB5udjCiKN7qs6P7ZkrIPXCz3:v0ujsIjCiK8zZXPXCz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource VirusShare-014d24e041b8dc17094456a2d11e1936
Files
-
VirusShare-014d24e041b8dc17094456a2d11e1936.exe windows:4 windows x86 arch:x86
fae2d7c5c2391790bb301b17565aa85a
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCurrentThread
DuplicateHandle
PeekNamedPipe
GetEnvironmentVariableA
ResetEvent
FindFirstChangeNotificationA
DeleteFileA
OpenMutexA
CreateMutexA
CreateEventA
GetVersion
CloseHandle
GetFileSize
SetFilePointer
CreateFileA
DeleteCriticalSection
GetProfileStringW
GetModuleHandleA
user32
GetWindowTextLengthA
CheckRadioButton
SendDlgItemMessageA
RegisterClassExA
DestroyWindow
SetClipboardData
LoadStringA
ClientToScreen
FrameRect
SetForegroundWindow
SystemParametersInfoA
SendMessageA
winspool.drv
DocumentPropertiesA
OpenPrinterA
ClosePrinter
shlwapi
SHSetValueA
PathAppendA
UrlCanonicalizeA
UrlCreateFromPathA
UrlApplySchemeA
ole32
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
ws2_32
ioctlsocket
listen
ntohl
inet_addr
select
recv
send
socket
inet_ntoa
wininet
InternetSetOptionExA
InternetQueryDataAvailable
HttpQueryInfoA
InternetSetStatusCallback
InternetSetFilePointer
InternetWriteFile
InternetReadFile
HttpSendRequestA
InternetCanonicalizeUrlA
HttpOpenRequestA
InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetConnectA
msvcrt
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
fopen
fseek
fread
fclose
memmove
atol
_itoa
Sections
.text Size: 16KB - Virtual size: 14KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 36KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 287KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 696B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ