VirusShare_aec804f85f40d8dc8b5289dc5b136dde

General

Target

VirusShare_aec804f85f40d8dc8b5289dc5b136dde
Size

6.3MB
MD5

aec804f85f40d8dc8b5289dc5b136dde
SHA1

17c61709d70530000d8e6cef2e29339b3f78e90f
SHA256

2eda09c3cbc7b24e535dc565d45ddeceaf722a3920b43d9b577876d85de83244
SHA512

ce2ff57766f1514a6fb5a6d28cefa4f52c6c134eceaa814905edb100a668884be0fff99ebea6c09d5d592e4a979eef789ae3f84893ef1d655a8660e79b576ad1
SSDEEP

98304:vyINdER0vy6hY252Uzwxi/ivHEnNeds+z826zqi+WNzV:agx30CNedh4ZzqizV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_aec804f85f40d8dc8b5289dc5b136dde

Files

VirusShare_aec804f85f40d8dc8b5289dc5b136dde
.exe windows:4 windows x86 arch:x86

be16025731b31ff474ec7a646e6e69e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetEnvironmentStrings
lstrlenA
WideCharToMultiByte
DeleteCriticalSection
SetHandleCount
TlsAlloc
HeapAlloc
lstrlenW
MultiByteToWideChar
InitializeCriticalSection
GetTickCount
ExitProcess
LCMapStringA
GetCurrentDirectoryW
lstrcatW
GetLocaleInfoW
GetLastError
CopyFileExA
CreateFileA

user32

EqualRect
GetSysColor
SendMessageA
DestroyWindow
CopyRect
CreateWindowExW
IntersectRect
KillTimer
MessageBoxA
LoadIconW
SetRect
GetDlgCtrlID
SetWindowPos
PtInRect
DefWindowProcW
PostMessageA
SystemParametersInfoW
wsprintfA
CallWindowProcW

gdi32

SetTextColor
ExtTextOutA
PatBlt
GetTextExtentPoint32W
SetROP2
LPtoDP
IntersectClipRect
GetBkMode

advapi32

CryptHashData
CryptGenKey
RegDeleteKeyW
RegNotifyChangeKeyValue
GetSecurityDescriptorDacl
RegQueryValueExA
RegSetValueExW
RegCreateKeyExW

msvcrt

puts

shlwapi

StrCmpW
StrChrA

Sections

.text
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be16025731b31ff474ec7a646e6e69e3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

shlwapi

Sections

.text Size: 3.9MB - Virtual size: 3.9MB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 12KB - Virtual size: 10KB

.tls Size: 4KB - Virtual size: 4KB

.rsrc Size: 188KB - Virtual size: 186KB

.text
Size: 3.9MB - Virtual size: 3.9MB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 12KB - Virtual size: 10KB

.tls
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 188KB - Virtual size: 186KB