VirusShare_4f714f5795a5275e0d0a3ab4269bd5fc

General

Target

VirusShare_4f714f5795a5275e0d0a3ab4269bd5fc
Size

150KB
MD5

4f714f5795a5275e0d0a3ab4269bd5fc
SHA1

fdbf445d77007c63b1b260f9d38f8ee0d730dbbc
SHA256

3ac597f0ba258b9641aa3e604a958d553bd97f8d0b55709c5179aecf95dc1314
SHA512

c2155aaee707ed3a005fb202dc43ef630667a8061deb67b666d7f9cb068be0619aed21dfa336200067e249d2566f7b2bef33a6ab1cc441d5e84f1866aa7c7e2c
SSDEEP

3072:T1f+GpXpOeUCnfYHqPB3LivMz6fT4Zskic2bHjfy:T/pO8bObTVtXfy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_4f714f5795a5275e0d0a3ab4269bd5fc

Files

VirusShare_4f714f5795a5275e0d0a3ab4269bd5fc
.exe windows:5 windows x86 arch:x86

173d9633613085e0bbf6000bc5a7aed0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strcspn
free
wcscspn
_adjust_fdiv
_vsnprintf
_mbschr
wcschr
_except_handler3
strchr
malloc
wcslen
_initterm

kernel32

ExitProcess
UnhandledExceptionFilter
LocalFree
TerminateProcess
WideCharToMultiByte
GetTickCount
Beep
QueryPerformanceCounter
SetUnhandledExceptionFilter
LocalAlloc
GetSystemTimeAsFileTime
GetCurrentThreadId
MultiByteToWideChar

ntdll

NtLoadKey
NtAllocateVirtualMemory

rpcrt4

NdrClientCall2
RpcBindingFromStringBindingW
RpcStringFreeW
I_RpcExceptionFilter
RpcBindingFree
RpcStringBindingComposeW

ws2_32

WSAGetLastError

user32

LoadStringW
GetSystemMetrics
LoadStringA
MessageBoxA

advapi32

MakeSelfRelativeSD
GetSecurityDescriptorControl
IsValidSecurityDescriptor
GetSecurityDescriptorLength

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 65KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

173d9633613085e0bbf6000bc5a7aed0

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

ntdll

rpcrt4

ws2_32

user32

advapi32

Sections

.text Size: 5KB - Virtual size: 5KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 512B - Virtual size: 32B

.rdata Size: 71KB - Virtual size: 70KB

.data Size: 65KB - Virtual size: 352KB

.text
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 512B - Virtual size: 32B

.rdata
Size: 71KB - Virtual size: 70KB

.data
Size: 65KB - Virtual size: 352KB