VirusShare_81fc4ee03cb8adc8979adac341eeb793

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_81fc4ee03cb8adc8979adac341eeb793
Size

250KB
MD5

81fc4ee03cb8adc8979adac341eeb793
SHA1

cb060fe1ecd033f155bb1f111afcd23ec19ac808
SHA256

49c4c8ebf9e225edeb168a7ed3bb2797b4b48b181cfa441ac0a8c6af24f1978d
SHA512

a57fdc09bd722100042a7972c10d9dac6e5ab12ce7f73e1da2360e92e6ce9b92da1802ed8d249528811f9b7e3fbb4e97e7080bd45d7ff5b564b5706b91758281
SSDEEP

6144:99h7gMfYOjVyGsGbSzrlynHjphfqDxkdyfJ:/h5Gz8Dphaxk+J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_81fc4ee03cb8adc8979adac341eeb793

Files

VirusShare_81fc4ee03cb8adc8979adac341eeb793
.exe windows:4 windows x86 arch:x86

3973e5b7b7bae7947101b3ac6b3020b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

CopyLZFile

kernel32

GetStartupInfoA
GlobalFlags
FlushFileBuffers
FreeConsole
HeapLock
GetDefaultCommConfigW
GetModuleHandleA

shlwapi

PathCompactPathExW
PathRemoveBlanksW
SHDeleteKeyA
PathIsUNCServerShareA
PathQuoteSpacesW
SHDeleteValueW
SHRegDeleteEmptyUSKeyA
PathIsUNCW
StrFormatByteSizeA
PathIsSystemFolderW
PathCommonPrefixW
StrCmpIW
PathIsRootW
PathFindNextComponentA
SHDeleteKeyW
PathSearchAndQualifyW
StrPBrkA
PathMatchSpecW
SHRegWriteUSValueW
PathRemoveBlanksA
PathCommonPrefixA
PathAddBackslashW
StrSpnA
StrCpyW
StrCatW
PathParseIconLocationW
PathIsURLW
SHRegSetUSValueW
PathAddExtensionW
StrCSpnIW
PathCombineA
SHRegOpenUSKeyW
ChrCmpIW
PathIsRelativeA
SHDeleteValueA
PathSetDlgItemPathA
PathStripToRootW
PathUnmakeSystemFolderA
PathBuildRootA
SHDeleteEmptyKeyA
PathAppendW
SHEnumKeyExA
PathFindOnPathA
PathGetDriveNumberA
PathMakePrettyA
PathFindExtensionW
SHRegEnumUSKeyW
PathMatchSpecA
SHCreateShellPalette
PathIsUNCServerShareW
PathFindOnPathW
SHGetValueA
SHRegGetUSValueW
SHRegGetUSValueA
SHRegEnumUSKeyA
ChrCmpIA
PathRemoveFileSpecW
SHRegCreateUSKeyA
SHRegCreateUSKeyW
SHRegDeleteEmptyUSKeyW
PathCompactPathW
PathCanonicalizeA
PathFileExistsA
PathUnquoteSpacesA
PathMakeSystemFolderW
PathIsFileSpecA
PathRenameExtensionW
StrDupA
StrTrimW
PathRelativePathToA
SHRegEnumUSValueW
SHRegDeleteUSValueA
PathStripPathA
PathMakePrettyW
PathIsPrefixA
StrCSpnA
PathIsRootA
PathStripPathW
PathAppendA
PathBuildRootW
StrSpnW
PathIsDirectoryW
PathIsUNCA
SHQueryValueExW
PathRemoveBackslashA
SHQueryInfoKeyW
PathCanonicalizeW
StrNCatW
PathIsRelativeW
PathRemoveArgsA
StrFormatByteSizeW
PathFindNextComponentW
PathFindFileNameA
StrCmpW
SHEnumKeyExW
StrIsIntlEqualW
PathGetDriveNumberW
SHRegGetBoolUSValueA
StrCSpnIA
PathIsUNCServerA
PathGetArgsA
PathIsUNCServerW
PathIsFileSpecW
PathIsDirectoryA
PathAddBackslashA
PathUnquoteSpacesW
SHRegOpenUSKeyA
PathRemoveBackslashW
PathRenameExtensionA
PathIsSameRootW
SHQueryValueExA
PathIsContentTypeW
StrFromTimeIntervalW
SHSetValueW
SHRegWriteUSValueA

version

VerQueryValueW
GetFileVersionInfoSizeW

msvcrt

__p__commode
_controlfp
_except_handler3
__set_app_type
__p__fmode
_exit
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter

oleacc

WindowFromAccessibleObject

pdh

PdhEnumMachinesA

mpr

WNetGetProviderNameW
WNetCancelConnectionA
WNetGetUniversalNameA
WNetAddConnection3W
WNetAddConnection2W
MultinetGetConnectionPerformanceW
WNetConnectionDialog
WNetAddConnectionW

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3973e5b7b7bae7947101b3ac6b3020b1

Headers

File Characteristics

Imports

lz32

kernel32

shlwapi

version

msvcrt

oleacc

pdh

mpr

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 2.6MB

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 2.6MB

.rsrc
Size: 8KB - Virtual size: 5KB