VirusShare_5c3b0a34b7c8070c0b6ed137f9c88250

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_5c3b0a34b7c8070c0b6ed137f9c88250
Size

249KB
MD5

5c3b0a34b7c8070c0b6ed137f9c88250
SHA1

8d4df30cfb4157b672c967c722b6aab284b455ed
SHA256

91df57c768469154840e39f6056bbde6ad13c7bcf35afae3ec651d251a1decd1
SHA512

3f2c63ff043086698a8d02b320846b675c16f1019bf3e08eb80cbb7b722ce07fa1f9941f9ddb236c4a162642b3ced71355d3af1224512249ffec79c7035d6db6
SSDEEP

6144:htgyNYX2V5GEp/3kA74Cwd8VLRK1ICq5fUGiqnAi7x:hnNYXi5GE37492LVfUInr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_5c3b0a34b7c8070c0b6ed137f9c88250

Files

VirusShare_5c3b0a34b7c8070c0b6ed137f9c88250
.exe windows:4 windows x86 arch:x86

765560febd18c3befba9d736f37c1909

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetSystemInfo
GetModuleHandleA
GetProcAddress
FreeConsole
GetVersionExW
FindFirstChangeNotificationW
OpenProcess
LockResource
TerminateThread
GetProcessHeaps
GetEnvironmentVariableA
LoadResource
GetModuleHandleW
GetFileAttributesA

user32

IsDlgButtonChecked
InflateRect
MessageBoxW
ReplyMessage
GetIconInfo
CheckDlgButton
SetMenuItemInfoW
SendDlgItemMessageW
GetWindowThreadProcessId
InvalidateRgn
IsWindowVisible
OffsetRect
GetWindowLongW
GetMenu
GetDlgCtrlID

gdi32

ExtTextOutA
GetTextMetricsW
SetBkColor
LineTo
SelectClipRgn
GetDeviceCaps
CreateDIBitmap
GetDIBits
GetTextExtentPoint32A
CombineRgn

comdlg32

ChooseColorW
ChooseFontW

advapi32

RegQueryValueExW
IsTextUnicode
GetUserNameW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
ExtractIconW

ole32

RegisterDragDrop
CoTaskMemFree

comctl32

ImageList_Add
ImageList_GetIcon
ImageList_Remove
ImageList_DragMove
ImageList_Destroy
ImageList_Draw

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

msvcrt

_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
__p__fmode
__set_app_type
_except_handler3
_controlfp
__p__commode

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 224KB - Virtual size: 422KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

765560febd18c3befba9d736f37c1909

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

version

msvcrt

Sections

.text Size: 16KB - Virtual size: 12KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 224KB - Virtual size: 422KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 16KB - Virtual size: 12KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 224KB - Virtual size: 422KB

.rsrc
Size: 8KB - Virtual size: 4KB