VirusShare_01fdbedebf7e07758be8713502ecdc1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_01fdbedebf7e07758be8713502ecdc1e
Size

136KB
MD5

01fdbedebf7e07758be8713502ecdc1e
SHA1

72e82920cbe1adfcbbb8a0ae9cacd80d6d636de3
SHA256

f7f5a72494391cc937544dab70480e09577794081316a292fb83147f84fb5f20
SHA512

38091c44dd0d400a14ae0df4e2ee7081f98940d654c037c993c15bed2c630aaf3b00b689850a83dea88bc3227648f78801777e6be50184143056d5bde8645174
SSDEEP

3072:o+zZNRqMMevbA1Vky5wwOrs0SVddx6CyyHD5y:5zPLTb615REyt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_01fdbedebf7e07758be8713502ecdc1e

Files

VirusShare_01fdbedebf7e07758be8713502ecdc1e
.dll windows:5 windows x86 arch:x86

0346522dd7ad0cd159af71643be661c3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Y:\XbNcgpmgyWclW\znCrCppQBvsb\bfXvljw\deQazuuDbSH\iZrQrtwKk.pdb

Imports

user32

ActivateKeyboardLayout
GetSubMenu
MonitorFromPoint
SetCursor
IsWindowVisible
IsRectEmpty
wsprintfA
DrawFrameControl
CreateDialogIndirectParamW
LockWindowUpdate
CheckMenuRadioItem
SetMenuItemBitmaps
InvalidateRect
OemToCharBuffA

kernel32

WaitForMultipleObjectsEx
GetUserDefaultUILanguage
FindResourceExW
GetModuleHandleA
FormatMessageW
SetWaitableTimer
LoadLibraryW
GlobalLock
GetModuleFileNameA

shlwapi

ord158

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_amsg_exit
_initterm
_ismbblead
_XcptFilter
sprintf
_exit
_cexit
__setusermatherr
__getmainargs

gdi32

LPtoDP
EndPage
LineDDA
PtVisible
SetAbortProc
GetObjectA

Exports

Exports

H99|U
?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE