VirusShare_8148cfbc1137ed4b8939158f4840ec8b

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_8148cfbc1137ed4b8939158f4840ec8b
Size

163KB
MD5

8148cfbc1137ed4b8939158f4840ec8b
SHA1

1dabb69ecec7ac3ff99693fd50349290eefe883f
SHA256

7b6b66c2498a9f9e1036cc3409724bb7700ec7820cb62439671a9329a76d641a
SHA512

fd7c3e26ae1d39375beea023c562ea18698835c4107c05ade64a0443ab709ca3233cb04fd90fc539e8bc1fe8ba19e3ef1bbb8aebf7294a8b00e21b4896780f0a
SSDEEP

3072:qipINR4QZNHvr1fl9khBBn+rQbBMFG4QAh2nUjoqvhd+shuV:lpMt9mBB+Q9MM472nUxhc4A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_8148cfbc1137ed4b8939158f4840ec8b

Files

VirusShare_8148cfbc1137ed4b8939158f4840ec8b
.dll windows:4 windows x86 arch:x86

2d92640b5b3367946333c4063a14d389

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
GetLastError
OutputDebugStringW
SetHandleCount
GetProcAddress
WideCharToMultiByte
HeapSize
MultiByteToWideChar
GetACP
RaiseException
InterlockedIncrement
GetModuleFileNameA
DeleteCriticalSection
TerminateProcess
GetCPInfo
UnhandledExceptionFilter
GetCurrentProcessId
FreeEnvironmentStringsW
IsDebuggerPresent
ExitProcess
TlsAlloc
HeapAlloc
HeapReAlloc
GetCurrentThreadId
GetModuleHandleW
Sleep
HeapFree
HeapCreate
LoadLibraryW
DecodePointer
TlsSetValue
SetLastError
WriteFile
TlsGetValue
GetTickCount
GetStringTypeW
IsValidCodePage
InterlockedDecrement
EnterCriticalSection
GetStartupInfoW
SetUnhandledExceptionFilter
QueryPerformanceCounter
LeaveCriticalSection
GetConsoleCP
GetStdHandle
GetEnvironmentStringsW
RtlUnwind
CreateFileW
FlushFileBuffers
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
TlsFree
HeapDestroy
GetCommandLineA
GetVersionExA
GetCurrentProcess
GetOEMCP
GetModuleHandleA
LCMapStringA
LCMapStringW
GetConsoleMode
VirtualFree
VirtualAlloc
OutputDebugStringA
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetSystemTimeAsFileTime
GetStringTypeA
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetFilePointer
SetStdHandle
InitializeCriticalSection
LoadLibraryA
CreateFileA

Exports

Exports

WdsCQCd

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d92640b5b3367946333c4063a14d389

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 41KB - Virtual size: 41KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 99KB - Virtual size: 280KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 41KB - Virtual size: 41KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 99KB - Virtual size: 280KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 4KB