VirusShare_c263e480050dd2b71bfe4a5e4b4cc9c8

Sharing

Copy URL

Twitter E-mail

General

Target

VirusShare_c263e480050dd2b71bfe4a5e4b4cc9c8
Size

142KB
MD5

c263e480050dd2b71bfe4a5e4b4cc9c8
SHA1

d911c6f643dd5841a960239a91eb97ce30f6922a
SHA256

e2992349dd4a0be7a68293c86afc566cb58c621644b15aa6613cf1b4860e00ca
SHA512

5cc453b4933715be123d1a0b507e297305a1f676045e2a257bc09672d281e044216a636c2dc9731cb156ca6b971a5ff922fb9115cce98cad3f0692223b700f0b
SSDEEP

3072:VgNq23oDzpeW7f6SgHS2jbxWGq0S2jbxWGqORLU:K9kzoD1SbGq0SbGqIQ

Score

1^/10

Malware Config

Signatures

Files

VirusShare_c263e480050dd2b71bfe4a5e4b4cc9c8
.exe windows:4 windows x86 arch:x86

98a58a945b05f2d2d1023986e5b20892

Code Sign

03:8b:0e:e2:d9:fb:b9:52:ba:7d:45:4a:9e:ca:28:57
Certificate

Issuer

CN=fffff

Not Before

18-05-2013 04:31

Not After

31-12-2039 23:59

Subject

CN=fffff

Extended Key Usages

ExtKeyUsageCodeSigning

61:28:78:55:72:32:b6:0b:ab:d4:dc:bb:1d:bc:86:6a:c5:a4:73:7b
Signer

Actual PE Digest

61:28:78:55:72:32:b6:0b:ab:d4:dc:bb:1d:bc:86:6a:c5:a4:73:7b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetModuleHandleA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
lstrcmpiW
lstrcpyW
CopyFileW
lstrcpynW
lstrlenW
CreateProcessW
GetLastError
Sleep
DeleteFileW
GetSystemTimeAsFileTime
ExpandEnvironmentStringsW
CreateFileW
CloseHandle
SetFilePointer
HeapFree
SetLastError
lstrcmpW
GetProcessHeap
HeapAlloc
VirtualAllocEx
GetStartupInfoW
LoadLibraryW
GetProcAddress

user32

LoadIconW
LoadCursorW
LoadIconA

msvcrt

_c_exit
_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__argc
__argv

advapi32

OpenThreadToken
ImpersonateSelf
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
RegisterEventSourceW
ReportEventW
DeregisterEventSource
RegDeleteKeyW
RegEnumKeyW
RegQueryInfoKeyW
RegDeleteValueA
RegSetValueExW
RegQueryValueExW
RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegOpenKeyW
RegCloseKey

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data6
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data5
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data4
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text3
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98a58a945b05f2d2d1023986e5b20892

Code Sign

03:8b:0e:e2:d9:fb:b9:52:ba:7d:45:4a:9e:ca:28:57Certificate

Extended Key Usages

61:28:78:55:72:32:b6:0b:ab:d4:dc:bb:1d:bc:86:6a:c5:a4:73:7bSigner

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 1024B - Virtual size: 1000B

.data6 Size: 512B - Virtual size: 100B

.data5 Size: 512B - Virtual size: 100B

.data4 Size: 512B - Virtual size: 100B

.data3 Size: 512B - Virtual size: 100B

.data Size: 3KB - Virtual size: 2KB

.data2 Size: 512B - Virtual size: 100B

.text3 Size: 61KB - Virtual size: 61KB

.rsrc Size: 47KB - Virtual size: 46KB

03:8b:0e:e2:d9:fb:b9:52:ba:7d:45:4a:9e:ca:28:57
Certificate

61:28:78:55:72:32:b6:0b:ab:d4:dc:bb:1d:bc:86:6a:c5:a4:73:7b
Signer

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 1024B - Virtual size: 1000B

.data6
Size: 512B - Virtual size: 100B

.data5
Size: 512B - Virtual size: 100B

.data4
Size: 512B - Virtual size: 100B

.data3
Size: 512B - Virtual size: 100B

.data
Size: 3KB - Virtual size: 2KB

.data2
Size: 512B - Virtual size: 100B

.text3
Size: 61KB - Virtual size: 61KB

.rsrc
Size: 47KB - Virtual size: 46KB