VirusShare_5fddd166f5b5931b2ab328cfd40e420a

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_5fddd166f5b5931b2ab328cfd40e420a
Size

326KB
MD5

5fddd166f5b5931b2ab328cfd40e420a
SHA1

fa92f4074a2ee7166b9dc9081707ba7a4e8956c4
SHA256

4f151f64c97aa09c5c99f25b63c503b91b54a99910daadb97762ad4f5dbb4910
SHA512

57aa9f96d83a906b910b1d63f3e9fa694c302696a7d237be47cfb1efdf0b5f0d2c152daa2be628fca2cd007a71dbc60def81867ddbfefed81b740b6240079c8c
SSDEEP

6144:kt8UOo3u1PmgxfxNJpXSDV76nu9Ni/n5s5ojFHf9BW:kt8Po3utmgxf3JRSDJ6u6SWlo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_5fddd166f5b5931b2ab328cfd40e420a

Files

VirusShare_5fddd166f5b5931b2ab328cfd40e420a
.exe windows:4 windows x86 arch:x86

a1d8df33c8c0c52793f9c91bf3e57740

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA

kernel32

FileTimeToDosDateTime
GetCPInfoExA
GetStringTypeA
CreateSemaphoreA
GetStartupInfoA
GetModuleHandleA

user32

LoadAcceleratorsA
DdeEnableCallback
GetKeyboardType
GetPriorityClipboardFormat
BlockInput
ToAscii
RegisterClassExA
GetClassInfoA

mpr

WNetEnumResourceW
WNetAddConnection3A
WNetConnectionDialog
WNetCloseEnum
WNetAddConnection2W
MultinetGetConnectionPerformanceW
WNetOpenEnumW
WNetOpenEnumA
WNetEnumResourceA
WNetAddConnection3W
WNetAddConnectionA
WNetGetConnectionW
WNetGetConnectionA
MultinetGetConnectionPerformanceA
WNetAddConnectionW
WNetGetProviderNameA
WNetGetUserA
WNetGetLastErrorW
WNetDisconnectDialog
WNetGetLastErrorA
WNetGetNetworkInformationA
WNetGetUniversalNameA
WNetConnectionDialog1A
WNetGetUniversalNameW
WNetGetUserW
WNetCancelConnection2A
WNetAddConnection2A
WNetUseConnectionA

msvcrt

__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv

imm32

ImmSetConversionStatus
ImmConfigureIMEA
ImmGetProperty
ImmGetCompositionStringW
ImmSetStatusWindowPos
ImmRegisterWordW
ImmGetIMEFileNameA
ImmGetIMEFileNameW
ImmGetConversionListW
ImmGetDescriptionA
ImmGetCandidateWindow
ImmUnregisterWordA
ImmIsUIMessageW
ImmGetCompositionWindow
ImmSetCompositionFontW
ImmSetCompositionFontA
ImmEnumRegisterWordA
ImmSetCompositionWindow
ImmEnumRegisterWordW
ImmGetDescriptionW
ImmGetContext
ImmEscapeA
ImmEscapeW
ImmIsIME
ImmGetStatusWindowPos
ImmSetCompositionStringW
ImmConfigureIMEW
ImmGetGuideLineA
ImmRegisterWordA
ImmGetCompositionFontA
ImmSetOpenStatus
ImmReleaseContext
ImmAssociateContext
ImmGetConversionStatus
ImmGetRegisterWordStyleW

advapi32

ChangeServiceConfig2A
GetSecurityDescriptorSacl
LsaSetInformationPolicy
RegCloseKey
LsaNtStatusToWinError
LookupPrivilegeValueA
MakeSelfRelativeSD
LsaSetDomainInformationPolicy
CreateServiceA
RegDeleteKeyA
GetAclInformation
ReadEventLogW
GetPrivateObjectSecurity
LsaSetTrustedDomainInformation
LsaSetTrustedDomainInfoByName
NotifyChangeEventLog
RegCreateKeyExA
RegDeleteKeyW
GetSecurityDescriptorDacl
ControlService
RegRestoreKeyW
RegQueryMultipleValuesA
RegCreateKeyA
GetExplicitEntriesFromAclW
RegEnumValueA
RegisterEventSourceA
ImpersonateLoggedOnUser
BuildImpersonateExplicitAccessWithNameA
SetServiceObjectSecurity
RegQueryValueExA
LsaLookupNames
GetTrusteeNameW
GetServiceDisplayNameW
ImpersonateSelf
OpenProcessToken
GetTrusteeFormA
EncryptFileW
BuildImpersonateExplicitAccessWithNameW
AddAccessAllowedAce
RegDeleteValueA
QueryServiceStatus
IsTokenRestricted
LookupPrivilegeNameA
InitializeSecurityDescriptor
BuildSecurityDescriptorW
GetLengthSid

version

GetFileVersionInfoSizeW
VerInstallFileA
VerQueryValueA

winmm

waveInClose
mciSendCommandA
waveInGetPosition
waveOutGetVolume
midiStreamProperty
waveOutRestart
joyGetDevCapsW
mciGetErrorStringA
midiStreamRestart
timeSetEvent
waveInUnprepareHeader
mmioSendMessage
joyGetPos
waveOutGetID
mciSendStringW
mmioSetInfo
mciGetDeviceIDFromElementIDA
mmioInstallIOProcA
waveOutPause
midiInGetErrorTextA
waveOutGetDevCapsW
midiOutShortMsg
mixerGetControlDetailsW
mciGetDeviceIDA
mixerGetLineInfoW
waveInGetErrorTextW
midiStreamOpen
midiInStop
waveInGetErrorTextA
midiOutCachePatches
auxSetVolume
mciGetYieldProc
midiOutGetID
mixerGetLineInfoA
mciSetYieldProc
mixerSetControlDetails
mixerGetDevCapsW
midiInOpen
midiStreamClose
SendDriverMessage
midiOutCacheDrumPatches
waveInGetDevCapsA
auxGetDevCapsW
midiInGetDevCapsA
mmioAdvance
midiOutGetVolume
mmioOpenW
mmioSetBuffer
midiDisconnect
midiOutGetErrorTextW
waveOutUnprepareHeader
mixerGetID
mmioWrite
mmioCreateChunk
midiOutGetDevCapsW
mixerGetLineControlsA
waveOutClose
timeGetTime
midiInGetDevCapsW
midiOutOpen
waveInGetDevCapsW
mciGetCreatorTask
midiInUnprepareHeader
waveInAddBuffer
timeKillEvent
midiStreamPosition
waveOutGetPosition
midiStreamOut
joyGetPosEx
joySetThreshold
waveOutSetPitch
waveOutGetNumDevs
waveInGetID
joyGetNumDevs
waveInMessage
midiOutGetDevCapsA
midiOutLongMsg
mmioOpenA
midiOutSetVolume
midiInAddBuffer
mmioGetInfo
mmioRenameA
mixerOpen
mixerGetDevCapsA
midiInPrepareHeader
waveOutGetPitch
waveInGetNumDevs
waveInStart
midiInStart
mmioDescend
midiOutPrepareHeader
midiOutGetNumDevs
sndPlaySoundA
mciGetDeviceIDW
waveInPrepareHeader
waveOutSetPlaybackRate

gdi32

ExtCreateRegion
CreateSolidBrush
SetPixelV
ResetDCA
GetGraphicsMode
CreatePenIndirect
GetClipRgn
SetPaletteEntries
SetColorSpace
GetCurrentPositionEx
GetPixelFormat
CreateRectRgnIndirect
PolyDraw
EnumObjects
RealizePalette
GetFontLanguageInfo
UnrealizeObject
GetOutlineTextMetricsW
ArcTo
GetCharABCWidthsW
EnumICMProfilesW
Pie
GetCharWidthW
PlayEnhMetaFile
CreateEllipticRgn
SelectClipRgn
SetEnhMetaFileBits
GetMetaFileW
SetWorldTransform
CreateDIBPatternBrushPt
GetNearestPaletteIndex
GetTextMetricsW
Arc
EnumMetaFile
GetBkMode
CreatePen
GetTextExtentPoint32A
CreateHalftonePalette
SetDIBColorTable
GetBitmapDimensionEx
CreateFontIndirectA
GetTextCharacterExtra
BeginPath
EndPath
RemoveFontResourceA
CreateFontIndirectW
CheckColorsInGamut
GetCharWidth32W
PlayMetaFile
GetColorAdjustment
CreateFontA
Polygon
TextOutW
IntersectClipRect
FlattenPath
DeleteMetaFile
GetMiterLimit
GetCharWidth32A
GetStockObject
EnumFontFamiliesA
Rectangle
GetRegionData
GetFontData
TextOutA
PlayEnhMetaFileRecord
AbortDoc
CreateCompatibleBitmap
GetICMProfileA
GetBrushOrgEx
GetEnhMetaFileBits
GetROP2
SetTextColor
CreateColorSpaceW
GetEnhMetaFilePaletteEntries
MaskBlt
SetDeviceGammaRamp
CreateDCA
PolyPolyline
GetEnhMetaFileA
DeleteColorSpace
FillRgn
GetTextFaceA
ExtEscape
SetBrushOrgEx
SetBitmapDimensionEx
CreateDCW
GetEnhMetaFileHeader
PolyPolygon
GetEnhMetaFileDescriptionW
TranslateCharsetInfo
ScaleViewportExtEx
PathToRegion
FrameRgn
Ellipse
GetCharABCWidthsFloatW
SetMapMode
GdiGetBatchLimit
GetMetaFileA
AddFontResourceW
GdiComment
Polyline
DeleteDC
CloseEnhMetaFile
SelectClipPath
GetGlyphOutlineA
SetPixel
GetTextColor
CloseMetaFile
GetTextExtentPointW
SetStretchBltMode
AbortPath
SetTextCharacterExtra
PolyBezierTo
SwapBuffers
GetDeviceCaps
UpdateColors
RemoveFontResourceW
SetICMProfileA
SetPixelFormat
CancelDC
GetPath
CreateBitmapIndirect
EnumEnhMetaFile
PolyTextOutA
CreateMetaFileA
EndDoc
GetTextExtentPoint32W
StartDocW
GdiFlush
ExtCreatePen
PtVisible
GetCharWidthFloatA
CopyEnhMetaFileW
SetMapperFlags
GetPaletteEntries
PtInRegion
GetViewportExtEx
AngleArc
EnumFontFamiliesExW
SetTextAlign
CreateICA
GetGlyphOutlineW
GetColorSpace
SetBoundsRect
OffsetWindowOrgEx
UpdateICMRegKeyA
StretchBlt
GetMetaFileBitsEx
CombineTransform
PlgBlt
PatBlt
CopyEnhMetaFileA
CombineRgn
GetTextExtentPointA
SelectPalette
GdiSetBatchLimit
CreateBitmap
CreateMetaFileW
GetCharacterPlacementW
GetLogColorSpaceW
EnumFontFamiliesW
SetDIBitsToDevice
UpdateICMRegKeyW
CreateEnhMetaFileW
ResetDCW
GetTextCharset
StrokePath
ExtTextOutW
PaintRgn
GetObjectA
GetObjectW
GetClipBox
CreateDIBPatternBrush
FixBrushOrgEx
SetAbortProc
CreateDIBitmap
CopyMetaFileA
DescribePixelFormat
ExcludeClipRect
GetArcDirection
OffsetClipRgn
SetBkMode
GetDIBColorTable
SaveDC
PolyBezier
GetWindowOrgEx
CreateColorSpaceA
InvertRgn
GetMetaRgn
SetGraphicsMode
GetSystemPaletteEntries
CreateFontW
GetTextFaceW
GetICMProfileW
GetViewportOrgEx
SetColorAdjustment
SelectObject
SetViewportExtEx
ResizePalette
PolylineTo
EnumFontFamiliesExA
CreateICW
GetCurrentObject
GetKerningPairsA
GetPolyFillMode
RoundRect
GetObjectType
GetMapMode
GetDCOrgEx
SetSystemPaletteUse
GetWinMetaFileBits
GetEnhMetaFileDescriptionA
EnumFontsA
FloodFill
MoveToEx
StartDocA
LineDDA
StrokeAndFillPath
ExtTextOutA
GetCharWidthA
GetStretchBltMode
SetDIBits
GetDeviceGammaRamp
GetNearestColor
DeleteObject
CreateDIBSection
CreatePolygonRgn
LineTo
GetTextCharsetInfo
CreateRectRgn
GetAspectRatioFilterEx
CreatePatternBrush
SetRectRgn
SetWindowOrgEx
RectVisible
SetArcDirection
GetDIBits
PolyTextOutW
SetWindowExtEx
GetCharABCWidthsA
SetBkColor
CreateRoundRectRgn
DPtoLP
GetOutlineTextMetricsA
CreateEllipticRgnIndirect
SetROP2
SetWinMetaFileBits
StartPage

winspool.drv

EnumPrinterDriversA
AddMonitorA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1d8df33c8c0c52793f9c91bf3e57740

Headers

File Characteristics

Imports

comdlg32

kernel32

user32

mpr

msvcrt

imm32

advapi32

version

winmm

gdi32

winspool.drv

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 2.9MB

.rsrc Size: 32KB - Virtual size: 29KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 2.9MB

.rsrc
Size: 32KB - Virtual size: 29KB