VirusShare_17a850ffa262b2977c797528036fbf75 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_17a850ffa262b2977c797528036fbf75
Size

175KB
MD5

17a850ffa262b2977c797528036fbf75
SHA1

32f6a327407ebf4ff17ec2bf2c139fabe52b6bd0
SHA256

3a84650c36cee7a91a666082ac6d12e99adbae31ebcda871a3c4e35a8b8dc0b4
SHA512

30c24cda29a09ae3928f237189d6e7b654f41f1e52526ddba8bdb83497fc6557b73a306a7100c74a2e2a8119fe62ef485e72092eef30796673b5f3644f9c6c70
SSDEEP

3072:OR1eArrSj7ICBwlHnQH10A6o9p8g42x/tWTlKaoiLo5FiKZeWCDAz:ORUXIPlwH1DlV5Wo5MKZnz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_17a850ffa262b2977c797528036fbf75

Files

VirusShare_17a850ffa262b2977c797528036fbf75
.exe windows:4 windows x86 arch:x86

267368bac792f0a5a24274585caa262e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
VirtualProtect
GetACP
LocalLock
GetModuleHandleA
GetUserDefaultLangID
GetConsoleCP
InterlockedExchange
HeapReAlloc
GetConsoleDisplayMode
GetCommandLineA
SetLastError
lstrlenA
HeapCreate
GlobalSize
GetAtomNameA
LoadLibraryExA
WaitForSingleObject
GetVersion
GetSystemTime
ResumeThread

user32

DrawTextA
EndPaint
FillRect
AnyPopup
CreateIcon
GetWindow
GetParent
GetClassNameA
wsprintfA
ShowWindow
FrameRect
DragDetect
GetDC
ReleaseDC
BeginPaint
SetForegroundWindow
GetCursorPos
GetFocus
GetTitleBarInfo

ntshrui

GetLocalPathFromNetResourceA
SetFolderPermissionsForSharing
DllGetClassObject
GetNetResourceFromLocalPathA
DllCanUnloadNow

msacm32

acmFilterEnumA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ