VirusShare_acfb18c0f01e25f7b67c668a735bf9b7

Sharing

Copy URL

Twitter E-mail

General

Target

VirusShare_acfb18c0f01e25f7b67c668a735bf9b7
Size

123KB
MD5

acfb18c0f01e25f7b67c668a735bf9b7
SHA1

520cc87d78d51f5aea6752c99217ecae9a1096ab
SHA256

6144f955f35addc613fd736fe70f5c14b3d99f8199237e4db8f363d654576454
SHA512

30a21d92666d306dc107c0fa633b0d1eb68bea08d07279f94dba0c0fbaa448b8f1d20239f784c73119f3227610996508e9ebdda5e7c7573cb30d6e3b5df76fcc
SSDEEP

3072:LPwDfVJN2qsUaM9XBzde38vRszEZiIMgh/l+q//kZM:TwDfDN2dUaMbPRszEwILR/8q

Score

1^/10

Malware Config

Signatures

Files

VirusShare_acfb18c0f01e25f7b67c668a735bf9b7
.exe windows:4 windows x86 arch:x86

de2d72f4cc4432118359bdd20b97bce5

Code Sign

5b:92:2b:bd:64:20:41:8e:4d:0f:00:28:f9:ef:2a:19
Certificate

Issuer

CN=yqC94FrNWxZChIUYw7OvJDtVe12iV5H4lTiU94rIyKssmSuOLxCSWv4PxVL4QLHH5f8JoT2WUraIN3RWdg1dk4chBwNeThFdQuo8usGjSpRj8UabCax1tHXkrXIc2VOb9oWFZh39Dh1cKtHRdTsRU6yBshNq9nxKQxnUpaTlNqHlZXUTyXCn5clgufXp1vlxhgRx6eciq1FJ6XqGFzAbjgQWKoMFkvWL7Hi9mQ2WVZlrch1cWKxXPNLST5vKFRb7vKasnHFMa7Kul2zSfikpNDVNXrZgxi2OV8GagIxMmRD2uAdLKMsghOlXolNMmQHGmh

Not Before

11/11/2012, 12:35

Not After

31/12/2039, 23:59

Subject

CN=yqC94FrNWxZChIUYw7OvJDtVe12iV5H4lTiU94rIyKssmSuOLxCSWv4PxVL4QLHH5f8JoT2WUraIN3RWdg1dk4chBwNeThFdQuo8usGjSpRj8UabCax1tHXkrXIc2VOb9oWFZh39Dh1cKtHRdTsRU6yBshNq9nxKQxnUpaTlNqHlZXUTyXCn5clgufXp1vlxhgRx6eciq1FJ6XqGFzAbjgQWKoMFkvWL7Hi9mQ2WVZlrch1cWKxXPNLST5vKFRb7vKasnHFMa7Kul2zSfikpNDVNXrZgxi2OV8GagIxMmRD2uAdLKMsghOlXolNMmQHGmh

Extended Key Usages

ExtKeyUsageCodeSigning

55:9d:4d:de:b8:b6:1f:74:35:4d:59:35:96:5a:c8:e4:5f:0e:6e:85
Signer

Actual PE Digest

55:9d:4d:de:b8:b6:1f:74:35:4d:59:35:96:5a:c8:e4:5f:0e:6e:85

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
MulDiv
HeapFree
HeapAlloc
WriteFile
CreateFileW
GetCurrentProcess
GetCurrentThreadId
CreateMutexW
CreateEventW
GetVersionExW
FormatMessageW
GetProcessHeap
HeapSetInformation
GetSystemTime
SystemTimeToFileTime
CloseHandle
LoadLibraryA
OutputDebugStringA
GetModuleFileNameW
SetLastError
GetLastError
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
LoadLibraryW
GetModuleHandleA
OpenMutexW
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
GetVolumePathNamesForVolumeNameW
DeviceIoControl
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
LocalFree
GetWindowsDirectoryW
lstrcatW
GetCPInfo

msvcrt

memcpy

advapi32

TraceMessage
OpenProcessToken
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey
RegQueryInfoKeyW
RegOpenKeyExW
ConvertStringSecurityDescriptorToSecurityDescriptorW
AdjustTokenPrivileges
LookupPrivilegeValueW
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
RegisterTraceGuidsW
UnregisterTraceGuids
RegEnumValueW
RegOpenKeyExA

Sections

.2
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.1
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 364B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de2d72f4cc4432118359bdd20b97bce5

Code Sign

5b:92:2b:bd:64:20:41:8e:4d:0f:00:28:f9:ef:2a:19Certificate

Extended Key Usages

55:9d:4d:de:b8:b6:1f:74:35:4d:59:35:96:5a:c8:e4:5f:0e:6e:85Signer

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

Sections

.2 Size: 512B - Virtual size: 4B

.1 Size: 113KB - Virtual size: 112KB

.text Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 364B

5b:92:2b:bd:64:20:41:8e:4d:0f:00:28:f9:ef:2a:19
Certificate

55:9d:4d:de:b8:b6:1f:74:35:4d:59:35:96:5a:c8:e4:5f:0e:6e:85
Signer

.2
Size: 512B - Virtual size: 4B

.1
Size: 113KB - Virtual size: 112KB

.text
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 364B