VirusShare_cfd2351a65e19f7ff9e09d9f0f2a42db

Sharing

Copy URL

Twitter E-mail

General

Target

VirusShare_cfd2351a65e19f7ff9e09d9f0f2a42db
Size

298KB
MD5

cfd2351a65e19f7ff9e09d9f0f2a42db
SHA1

2ec3342d9c01e0eeeec80b4f5787a6f9a9ce5d50
SHA256

a77232cefd0ce412731521cb4143dbaaaf51e69076cafd2e2252c663b2cf00ec
SHA512

23aff27d7189229de12b124285442f38c9f3eeefd3a1f5b1fd193c983b9212f419819c869869f373e8a98ff2bbaf94579ca91aa908cecdbf9d190b91697a3718
SSDEEP

6144:DLOMYYit9Y5OE3bTWUqboQNYBsQNZVwpEG78SIWw0Rh6:DCKp3+7kQNYBsQfweG7EWwR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_cfd2351a65e19f7ff9e09d9f0f2a42db

Files

VirusShare_cfd2351a65e19f7ff9e09d9f0f2a42db
.exe windows:4 windows x86 arch:x86

1d8bdd67f77deb05c51af87c0c1c0ce0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyA
OpenServiceA
LookupAccountNameW
UnlockServiceDatabase
GetSecurityDescriptorOwner
AddAuditAccessAce
RegDeleteValueW
GetAce
QueryServiceLockStatusW
LookupPrivilegeNameW
ReadEventLogA
OpenServiceW
RegOverridePredefKey
OpenBackupEventLogW
OpenProcessToken
ReportEventA
RegSetValueW
RegDeleteValueA
ObjectPrivilegeAuditAlarmA
GetNamedSecurityInfoW
RegUnLoadKeyA
LsaLookupNames
RegSetValueExW
InitializeSecurityDescriptor
GetServiceDisplayNameW
OpenBackupEventLogA
GetLengthSid
ObjectCloseAuditAlarmA
OpenSCManagerW
RegLoadKeyW
QueryServiceStatus
GetExplicitEntriesFromAclW
RegNotifyChangeKeyValue
LsaQueryInformationPolicy
QueryServiceConfig2W
LookupAccountNameA
RegQueryValueW
CreateServiceA
AbortSystemShutdownW
RegEnumValueW
BuildSecurityDescriptorW
RegQueryValueA
BuildTrusteeWithNameW
StartServiceA
RegCloseKey
GetAclInformation
LsaDeleteTrustedDomain
CopySid
DeregisterEventSource
SetNamedSecurityInfoW
LookupSecurityDescriptorPartsW
GetFileSecurityW
FreeSid
LsaEnumerateAccountRights
RegSetValueA
LsaSetInformationPolicy
SetNamedSecurityInfoA
LookupPrivilegeValueA
RegOpenKeyExA
LsaEnumerateTrustedDomains
CloseServiceHandle
SetFileSecurityA
SetSecurityDescriptorOwner
ReportEventW
BuildImpersonateTrusteeA
RegOpenKeyExW
RegEnumValueA
SetEntriesInAclW
SetThreadToken
LogonUserA
RegQueryMultipleValuesW
RegSaveKeyA
GetSecurityDescriptorSacl
RegReplaceKeyA
GetAuditedPermissionsFromAclW
ObjectCloseAuditAlarmW
MakeSelfRelativeSD
DecryptFileW
GetSidLengthRequired
RegQueryValueExA
CreateRestrictedToken
SetSecurityDescriptorSacl
SetPrivateObjectSecurity
OpenEventLogA
GetSidSubAuthorityCount
PrivilegedServiceAuditAlarmW
ControlService
GetServiceKeyNameA
ChangeServiceConfigW
RegisterEventSourceA
GetSecurityDescriptorDacl
RegSetValueExA
SetSecurityDescriptorGroup
GetTokenInformation
NotifyChangeEventLog
RegEnumKeyExW
SetTokenInformation
AllocateAndInitializeSid
EnumServicesStatusA
AddAccessAllowedAce
RegCreateKeyExW
CreatePrivateObjectSecurity
RegQueryMultipleValuesA
LsaOpenPolicy
QueryServiceObjectSecurity
LogonUserW
AdjustTokenPrivileges
GetSecurityInfo
LsaEnumerateAccountsWithUserRight
AddAce
BuildTrusteeWithNameA
QueryServiceLockStatusA

user32

SetCapture
PeekMessageA
GetDialogBaseUnits
SendDlgItemMessageA
EqualRect
IsRectEmpty
GetAsyncKeyState
GetSysColorBrush
DefFrameProcA
GetMenuContextHelpId
CreateMDIWindowW
GetKeyboardState
DrawMenuBar
UnregisterClassW
GetClassInfoExA
DrawStateA
FrameRect
OffsetRect
FlashWindow
IsIconic
DeleteMenu
DeferWindowPos
ClientToScreen
FindWindowExW
EnableWindow
IsMenu
DdeUninitialize
RegisterClassExA
GetWindowModuleFileNameW
GetGUIThreadInfo
DestroyCaret
EnumDisplaySettingsW
GetWindowTextLengthA
CountClipboardFormats
CreateIconIndirect
MessageBeep
RegisterClassA
CreateDialogParamA
LoadBitmapW
WinHelpA
GetProcessWindowStation
UnregisterClassA
ChildWindowFromPointEx
CreateIconFromResource
GetMenuStringW
MessageBoxIndirectW
SubtractRect
GetDCEx
SetParent
SetMenuDefaultItem
DialogBoxParamA
SendMessageCallbackW
LoadImageA
SetClassLongA
GetCaretPos
VkKeyScanExA
ModifyMenuW
CreateIconFromResourceEx
LoadMenuIndirectW
TranslateMessage
GetCursor
VkKeyScanA
WindowFromPoint
LoadAcceleratorsA
DialogBoxIndirectParamA
GetClassNameW
CharPrevW
MapVirtualKeyA
DestroyAcceleratorTable
GetQueueStatus
BlockInput
LookupIconIdFromDirectoryEx
GetWindowTextA
GetMenuState
SendMessageTimeoutA
RemovePropA
CharToOemW
IsWindow
CharUpperW
SetWindowsHookA
GetKeyboardType
EnableMenuItem
CharLowerBuffW
GetMessageW
EnumWindowStationsW
CloseWindow
MapVirtualKeyW
DrawStateW
VkKeyScanW
DlgDirListW
EnumDisplaySettingsA
MsgWaitForMultipleObjectsEx
GetDlgItemInt
DlgDirListA
GetActiveWindow
GetWindowDC
CheckMenuItem
SetScrollRange
DrawAnimatedRects
CreateDialogParamW
PostQuitMessage
OemToCharA
KillTimer
EnumDesktopWindows
SetDlgItemTextW
RemoveMenu
IsWindowEnabled
SetClassWord
GetNextDlgGroupItem
PaintDesktop
DdeKeepStringHandle
SetWinEventHook
GetFocus
GetMenuStringA
GetWindowWord
MapDialogRect
GetKeyboardLayoutNameW
DdeInitializeA
SystemParametersInfoA
SetRect
GetClassWord
CharToOemBuffW
SendMessageA
ModifyMenuA
InvalidateRect
TranslateAcceleratorW
LoadMenuA
DrawFrameControl
UnhookWindowsHookEx
DestroyMenu
IsCharLowerA
DefDlgProcW
GetMenuItemInfoW
CharNextExA
GetWindowTextW
DrawTextExW
SetDlgItemTextA
CheckRadioButton
UnhookWinEvent
CreateDialogIndirectParamA
OemKeyScan
ValidateRect
CloseWindowStation
CharToOemA
GetMenuCheckMarkDimensions
SendMessageW
RegisterClipboardFormatW
SetForegroundWindow
TranslateAcceleratorA
GetMessageExtraInfo
SetWindowTextA
GetWindowModuleFileNameA
ChangeDisplaySettingsW
WaitForInputIdle
GetSysColor
DestroyCursor
ToUnicodeEx
IsZoomed
PostThreadMessageW
DispatchMessageW
SetClassLongW
LockWindowUpdate
DrawTextW
GetClipCursor
SetLastErrorEx
PostThreadMessageA
GetKeyboardLayoutNameA
SetWindowsHookExA
IsDialogMessageA
EnumPropsExW
CreateDialogIndirectParamW
SetMenuItemInfoW
ChildWindowFromPoint
GetDlgItemTextA
DdeCmpStringHandles
RemovePropW
GetMenuItemID
MessageBoxIndirectA
DdeUnaccessData
PtInRect
SetTimer
UpdateWindow
SetClipboardViewer
PostMessageA
GetCapture
GetLastActivePopup
DlgDirListComboBoxA
SetPropW
CreatePopupMenu
SetDlgItemInt
WaitMessage
DdeAccessData
CloseClipboard
SetUserObjectSecurity
GetUpdateRect
ScreenToClient
SendMessageCallbackA
PeekMessageW
SetSysColors
GetTopWindow
LoadImageW
GetSubMenu
ReuseDDElParam
CopyAcceleratorTableA
DrawIconEx
DefMDIChildProcA
AppendMenuW
UnregisterHotKey
GetMenuItemRect
MenuItemFromPoint
ScrollWindowEx
GetKeyboardLayout
CharLowerW
SwitchDesktop
ChangeDisplaySettingsExW
GetForegroundWindow
SendDlgItemMessageW
InflateRect
GetWindow
BringWindowToTop
AppendMenuA
TrackPopupMenuEx
DefMDIChildProcW
SendNotifyMessageW
SwapMouseButton
DialogBoxIndirectParamW
OpenDesktopW
LoadKeyboardLayoutW
SetCaretBlinkTime
DrawEdge
NotifyWinEvent
MessageBoxExA
IsChild
DrawFocusRect
GetIconInfo
SetCursor
OpenIcon
ToAscii
FillRect
MapWindowPoints
RedrawWindow
MessageBoxW
SetScrollPos
GetUserObjectSecurity
WindowFromDC
WINNLSEnableIME
DispatchMessageA
CreateMDIWindowA
InvalidateRgn
GetMessageTime
GetSystemMetrics
InsertMenuA
GetKeyState
DdePostAdvise
TrackPopupMenu
OemToCharW
DlgDirSelectExW
HideCaret
DefWindowProcW
MoveWindow
SetScrollInfo
DdeEnableCallback
ShowCaret
OemToCharBuffA
EnumPropsExA
VkKeyScanExW
SetWindowTextW
LoadIconW
DdeGetLastError
OpenClipboard
DdeGetData
DestroyWindow
ExcludeUpdateRgn
LoadMenuW
GetUpdateRgn
InsertMenuItemW

kernel32

GetTimeFormatW
DeleteFileA

msvcrt

_eof

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d8bdd67f77deb05c51af87c0c1c0ce0

Headers

File Characteristics

Imports

advapi32

user32

kernel32

msvcrt

Sections

.text Size: 64KB - Virtual size: 62KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 4.3MB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 64KB - Virtual size: 62KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 4.3MB

.rsrc
Size: 32KB - Virtual size: 30KB