VirusShare_eff6e088c8b89604f38880bc9b58e5a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_eff6e088c8b89604f38880bc9b58e5a6
Size

309KB
MD5

eff6e088c8b89604f38880bc9b58e5a6
SHA1

05b14fc80e460af1934722405409a5a3cfc858c0
SHA256

982bd85b4b1ebf78514caaaffbc11193af2d64c01528f2fa33e3e925916d21cc
SHA512

817924e28ffbee5033e025bd426216d282578a982b67257fc2d62b7b9f64fc286190f48666e9e3d21366ec60652cc898d8393dcec595fd0e265e2bcc49e884f0
SSDEEP

6144:M8QIIo1RUzmFAC1mtVFCJy0LFHSnm82HR3uF1lHdV:oMOzmBECJy0VLdR3uFLdV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_eff6e088c8b89604f38880bc9b58e5a6

Files

VirusShare_eff6e088c8b89604f38880bc9b58e5a6
.exe windows:4 windows x86 arch:x86

48057860cfe991e1292bf5f30824a0ac

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

CopyRect
DrawIcon
CopyIcon
InsertMenuA
DrawTextA
CopyImage
DrawIconEx
GetMenu
IsWindow
CreateIcon
IsMenu
LoadMenuA
IsWindow
AlignRects
LoadMenuA
GetDlgItem

kernel32

OpenFile
OpenFileMappingA
ExitProcess
Sleep
ExitProcess
CopyFileA
Sleep
CreateProcessA
OpenFileMappingA
GetLastError
Sleep
GetComputerNameA
GlobalFree

Sections

tls
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdat
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 183B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ