VirusShare-3b5751e80475d7f0256909c120c6d0ad

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare-3b5751e80475d7f0256909c120c6d0ad
Size

114KB
MD5

3b5751e80475d7f0256909c120c6d0ad
SHA1

875ec2df5562ce0e1dd303dd498120a2f1657879
SHA256

ab4e0f4c560bb7330546d2a3087dac5978f053f563ab8712ed32671a7a0fcfb4
SHA512

6749df9e1f011c9951779e78cb5f1498dc55dc827aca94bce69edd254d964ab62f9daa0f77f9c8767be81bda788c3754a4125bf0e6a0a75a05b459fbf1e9592f
SSDEEP

3072:+E+R6eJOAl/JBDBkPzjQc8PF+YwW3D9xqFR:+NEuRsPHQcwF+/Wz9xA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare-3b5751e80475d7f0256909c120c6d0ad

Files

VirusShare-3b5751e80475d7f0256909c120c6d0ad
.dll regsvr32 windows:5 windows x86 arch:x86

f809aa346ace640853f4b5e9f8577e54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

olepro32.pdb

Imports

user32

CreateIcon
GetSysColor
WinHelpW
IsWindow
EnableWindow
GetMessageA
GetMessageW
TranslateMessage
DispatchMessageW
DispatchMessageA
PostMessageW
PostQuitMessage
GetActiveWindow
SetActiveWindow
SetFocus
DestroyWindow
CreateCursor
wsprintfA
GetTopWindow
IsWindowUnicode
GetClientRect
GetDialogBaseUnits
GetDC
ReleaseDC
GetWindowLongW
CharNextA
GetWindowTextA
CharLowerA
GetParent
SendMessageW
GetFocus
GetDlgItem
GetKeyState
DrawIcon
GetSystemMetrics
SetWindowLongW
GetIconInfo
DestroyIcon
CopyIcon
CopyImage
RegisterClipboardFormatA
wsprintfW

gdi32

SaveDC
SetDIBits
SetBitmapBits
EnumFontFamiliesExW
GetTextFaceW
CreateHalftonePalette
Escape
CreateDIBSection
IntersectClipRect
GetWindowOrgEx
OffsetViewportOrgEx
PlayEnhMetaFile
EnumMetaFile
RestoreDC
DeleteEnhMetaFile
DeleteMetaFile
PlayMetaFileRecord
CreatePalette
GetEnhMetaFileBits
GetMetaFileBitsEx
CreateCompatibleDC
BitBlt
DeleteDC
CreateCompatibleBitmap
GetBitmapBits
SetEnhMetaFileBits
SetStretchBltMode
SetBkColor
SetTextColor
SetMapMode
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
CreateFontIndirectW
CreateFontIndirectA
GetDeviceCaps
DeleteObject
GetTextExtentPointA
GetTextMetricsW
SelectObject
GetPaletteEntries
PatBlt
CreateBitmap
SetMetaFileBitsEx
GetBitmapDimensionEx
GetObjectW
GetEnhMetaFileHeader
StretchDIBits
GetDIBits
StretchBlt
RealizePalette
SelectPalette
GetStockObject
GetObjectType
GetCurrentObject
GetWinMetaFileBits
SetViewportExtEx
CreateDIBitmap

kernel32

IsDBCSLeadByte
FreeLibrary
MulDiv
LockResource
LoadResource
FindResourceW
InterlockedIncrement
InterlockedDecrement
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
EnterCriticalSection
lstrlenW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GlobalDeleteAtom
GlobalAddAtomW
Sleep
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
MultiByteToWideChar
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleA
GetVersion
GetSystemDirectoryA
GetLastError
LoadLibraryA
WideCharToMultiByte

advapi32

RegCloseKey
RegOpenKeyW
RegCreateKeyA
RegSetValueA
RegQueryValueW
RegFlushKey
RegOpenKeyA

msvcrt

_adjust_fdiv
??1type_info@@UAE@XZ
malloc
?terminate@@YAXXZ
wcslen
wcscpy
wcsrchr
??3@YAXPAX@Z
wcsncat
??2@YAPAXI@Z
__CxxFrameHandler
_CxxThrowException
_except_handler3
_initterm
free
calloc
_wcslwr
wcscmp
_wcsicmp
wcsncpy
_CIfmod

ole32

StgCreateDocfile
StringFromGUID2
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
ReleaseStgMedium
CoCreateInstance
CoGetMalloc

oleaut32

LoadTypeLi
VariantInit
VariantClear
SysFreeString
SysAllocString
VariantChangeType

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
OleCreateFontIndirect
OleCreatePictureIndirect
OleCreatePropertyFrame
OleCreatePropertyFrameIndirect
OleIconToCursor
OleLoadPicture
OleTranslateColor

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f809aa346ace640853f4b5e9f8577e54

Headers

File Characteristics

PDB Paths

Imports

user32

gdi32

kernel32

advapi32

msvcrt

ole32

oleaut32

Exports

Exports

Sections

.text Size: 63KB - Virtual size: 63KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 13KB - Virtual size: 13KB

.reloc Size: 36KB - Virtual size: 36KB

.text
Size: 63KB - Virtual size: 63KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 13KB - Virtual size: 13KB

.reloc
Size: 36KB - Virtual size: 36KB