VirusShare_18be20fe58bfd7a68806c50324c51133

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_18be20fe58bfd7a68806c50324c51133
Size

156KB
MD5

18be20fe58bfd7a68806c50324c51133
SHA1

179960e37ae1cd35def6519f600a125c17944608
SHA256

b42861b8d57aa2e2ce295ad0fb746da928f39bcaa13342689b9058405694d32e
SHA512

71aafb81f0839a38c5803ed6fdf04ba28c8ddefbf1608bde3d0ca83a23717aadd1a92bc75780e326a85cac0a39ea2fef508b9a69d3cb3deae42f6776aba0e9ff
SSDEEP

3072:JPPC582RIBioXrCYIWVr9IzDJFjZPSuxyhy98tXDMp1HE4G2Jb/8:JPPpm+9YDzyhyiUxE499/8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_18be20fe58bfd7a68806c50324c51133

Files

VirusShare_18be20fe58bfd7a68806c50324c51133
.exe windows:4 windows x86 arch:x86

5ed43dfbd7b5c01dd89035f61735a95b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
DeleteFileA
GetCurrentProcess
Process32First

imm32

ImmGetIMEFileNameA
ImmReleaseContext
ImmIsIME
ImmGetOpenStatus

imagehlp

MapFileAndCheckSumA
MapDebugInformation
ImageNtHeader
ImageEnumerateCertificates
ImageGetDigestStream
SymGetLineFromAddr
SymGetSymFromName
SymGetOptions
SymCleanup
ImagehlpApiVersionEx
EnumerateLoadedModules
SymInitialize
SymRegisterCallback
SymGetSearchPath
ImageGetCertificateData
SymSetSearchPath

winmm

mixerGetID
OpenDriver
mixerGetLineControlsA
timeBeginPeriod
joyGetPos
mixerGetDevCapsW
waveOutClose
timeGetTime
mixerGetLineInfoW
joyGetDevCapsA
timeKillEvent
midiInOpen
mmioClose
waveInGetDevCapsA
waveOutGetVolume
mciSendStringA
mmioDescend
waveInOpen
mmioSeek
mixerGetLineInfoA
midiOutGetNumDevs
mmioWrite
timeGetDevCaps
waveOutSetVolume
auxGetNumDevs
midiInGetDevCapsA
midiOutGetDevCapsA
waveOutMessage
mciSendCommandA
mmioRead
sndPlaySoundA
CloseDriver
timeGetSystemTime
mixerOpen
midiInGetNumDevs
midiOutClose
mixerGetControlDetailsA
timeEndPeriod

version

VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerInstallFileA

advapi32

LsaOpenPolicy
GetSidIdentifierAuthority
RegCreateKeyW
RegEnumKeyExW
QueryServiceStatus
GetSecurityDescriptorSacl
SetEntriesInAclA
RegQueryValueW
SetSecurityDescriptorDacl
SetSecurityInfo
IsTextUnicode
OpenSCManagerW
GetLengthSid
LookupPrivilegeValueW
RegDeleteValueW
GetAce
OpenServiceA
ControlService
ChangeServiceConfigW
InitializeSid
ImpersonateLoggedOnUser
RegSaveKeyA
GetSecurityDescriptorDacl
GetNamedSecurityInfoA
QueryServiceConfigA
RegQueryValueExA
DeleteService
RegisterEventSourceA
QueryServiceConfigW
SetThreadToken
LockServiceDatabase
RegSetValueW
EqualSid
GetTokenInformation
LookupPrivilegeValueA
DeregisterEventSource
RegisterEventSourceW
ReportEventW
RegQueryValueA
GetFileSecurityA
IsValidSecurityDescriptor
GetSecurityInfo
RegQueryValueExW
RegEnumKeyA
RegQueryInfoKeyW
AddAce
FreeSid
RegisterServiceCtrlHandlerA
OpenThreadToken
EnumServicesStatusW
AddAccessDeniedAce
RegSetKeySecurity
StartServiceW
RegConnectRegistryW
CloseServiceHandle
ReportEventA
RegEnumValueW
GetAclInformation
InitiateSystemShutdownA
RegCreateKeyExW
IsValidAcl
SetSecurityDescriptorGroup
RegEnumValueA
InitializeAcl
SetServiceStatus
LsaQueryInformationPolicy
RegCreateKeyA
RevertToSelf
AbortSystemShutdownA
GetKernelObjectSecurity
MapGenericMask
RegCloseKey
LsaRetrievePrivateData
OpenServiceW
GetFileSecurityW
RegSetValueExW
RegCreateKeyExA
RegisterServiceCtrlHandlerW

user32

CopyRect
GetPropA
EnableMenuItem
DefFrameProcA
ChangeClipboardChain
LoadIconW
EndPaint
CreateDialogIndirectParamA
ShowWindow
LoadStringW
CreateDialogParamW
RegisterClipboardFormatA
GetWindowRect
CharToOemW
MessageBoxIndirectW
SendMessageA
WinHelpA
GetClassInfoW
DialogBoxIndirectParamA
DdeQueryConvInfo
LoadMenuA
DdeNameService
CharLowerA
SetWindowLongW
SubtractRect
PostMessageA
SetClipboardData
GetWindowLongW
CharUpperW
LoadIconA
GetDlgItem
SetCaretPos
ScrollWindow
BeginPaint
MessageBoxW
LoadStringA
CountClipboardFormats
IsCharAlphaA
LoadBitmapA
SetActiveWindow
EqualRect
FillRect
mouse_event
EnumDisplaySettingsW
TranslateAcceleratorW
GetWindowTextA
ModifyMenuA
InsertMenuItemW
DeleteMenu
LoadCursorA
wvsprintfW
CreateIcon
EnumThreadWindows
SetWindowTextW
ShowOwnedPopups
MessageBeep
CharPrevW
wvsprintfA
LoadKeyboardLayoutA
DdeConnect
GetClassInfoExA
GetScrollRange
GetDlgItemTextA
KillTimer
AdjustWindowRect
GetDC
AppendMenuA
SetCursorPos
GetMenuCheckMarkDimensions
InsertMenuItemA
GetMenu
SetFocus

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ed43dfbd7b5c01dd89035f61735a95b

Headers

File Characteristics

Imports

kernel32

imm32

imagehlp

winmm

version

advapi32

user32

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 20KB - Virtual size: 48KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 20KB - Virtual size: 48KB

.rsrc
Size: 32KB - Virtual size: 28KB