VirusShare_71b48c1b6ab4ad8afcdcdb14efd19a30 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_71b48c1b6ab4ad8afcdcdb14efd19a30
Size

68KB
MD5

71b48c1b6ab4ad8afcdcdb14efd19a30
SHA1

ff000e33e7f349d4b698c13a8bd5b5e028d52d49
SHA256

a00266e237de2dd0e3dcbe1c403ef739ce6f7cf7fa30410b6ed2aca0365b91e3
SHA512

cf8d76850f68f266cf6c05c11365689e564c23329a1acc1c3e024e63923886d8553c8608734c815df25ddb8d6f087310259c7ed877d560a7121b5392a9770cde
SSDEEP

384:I4/vz74WB+wk15BdQdeAuVzpLcbcS0xhfXor/r+i80CoWGIeWJywmMe0jeab26bM:Z/vz7fUS8AuVzpoFChPo/r+mCorFP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_71b48c1b6ab4ad8afcdcdb14efd19a30

Files

VirusShare_71b48c1b6ab4ad8afcdcdb14efd19a30
.exe windows:4 windows x86 arch:x86

8733f7c79d43c282f45db40436750d4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
DialogBoxParamW
SetCursorPos
GetMessageA
CreateWindowExW
IsDialogMessageA
GetCaretPos
GetWindowLongA
LoadCursorA
PeekMessageA
DispatchMessageA
DrawIcon
CharToOemA
IsWindow
ShowWindow
PostMessageA

kernel32

GetProcessHeap
GetFullPathNameA
ExpandEnvironmentStringsA
GetCurrentProcess
SleepEx
CreateNamedPipeW
GetComputerNameA
GetNumberFormatW
CompareStringA
SetCurrentDirectoryA
WriteProcessMemory
CreateMutexA
HeapCreate
LoadLibraryA
GetDiskFreeSpaceA
CopyFileA
CreateEventW
GetTimeFormatA
FindResourceExA
FormatMessageA
CloseHandle
GetDateFormatW
GetCurrentDirectoryA
GetCurrentThreadId
SetEnvironmentVariableA
FoldStringW
InterlockedDecrement
GetAtomNameA

ctl3d32

Ctl3dEnabled
Ctl3dGetVer
Ctl3dUnregister

certcli

CAEnumNextCA
CAEnumFirstCA

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ