VirusShare_cc45e4bb7014f02f8fb6e4281b89a560

General

Target

VirusShare_cc45e4bb7014f02f8fb6e4281b89a560
Size

321KB
MD5

cc45e4bb7014f02f8fb6e4281b89a560
SHA1

64cf395557947c2959cf754de8c83adb696dd3ad
SHA256

70d2e50aa8ae4908e51cea4db5501b275b889f1bf3aa09d6b5ccf8860afd8c31
SHA512

97f9867d9a38c1ab789d1a9fa541297bb55f5667b264eda63661600912113f9c8a3bdc0478d9af151b01b6f9d422193aea9c893159f1a2340e3aeee216670b35
SSDEEP

6144:3O7L1o2U8CRh8G8IFZE0o4Z2fGnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnFnnz:e7Roz8CMl9+WGnnnnnnnnnnnnnnnnnnh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_cc45e4bb7014f02f8fb6e4281b89a560

Files

VirusShare_cc45e4bb7014f02f8fb6e4281b89a560
.exe windows:5 windows x86 arch:x86

e65b0cb5af7f2d8798679c5b74ff72d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
LoadLibraryW
CreateProcessA
GetModuleFileNameA
HeapAlloc
GetLastError
HeapFree
GetModuleHandleW
Sleep
ExitProcess
GetStartupInfoW
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
WriteFile
GetStdHandle
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RtlUnwind
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
GetLocaleInfoA
WideCharToMultiByte
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 129KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e65b0cb5af7f2d8798679c5b74ff72d4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 129KB - Virtual size: 134KB

.rsrc Size: 138KB - Virtual size: 137KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 129KB - Virtual size: 134KB

.rsrc
Size: 138KB - Virtual size: 137KB