VirusShare_bcbd2a521414d836663d5e935f0abd49

Sharing

Copy URL

Twitter E-mail

General

Target

VirusShare_bcbd2a521414d836663d5e935f0abd49
Size

319KB
MD5

bcbd2a521414d836663d5e935f0abd49
SHA1

83d16c5e26e96bbdc964046c8843c008dc3e050e
SHA256

4db20b6ea4d69e32bebd9bbe76279b350530602049902852c6cfe975fd067526
SHA512

a52a5faae993ba5bdcc9b064c52b48881517e0ac96a49139db1ca2eb1f640285e4b78ff8fde264263b1a588d814e05fa17e99a2b95233f707a1831592c322bb3
SSDEEP

6144:ZVD2HZmRF7Ad/1q4jU/fR34WZosa8t42j5FMRMlJMNbj4G9lOQ4:ZVAZG4AeWZoU+S5yXjiJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_bcbd2a521414d836663d5e935f0abd49

Files

VirusShare_bcbd2a521414d836663d5e935f0abd49
.exe windows:4 windows x86 arch:x86

3d5741180d1f83e5ac5cb0190b307525

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCursorInfo
GetLastError
FillConsoleOutputCharacterW
ExpandEnvironmentStringsA
GetModuleHandleA
GetCommState
ExpandEnvironmentStringsW
GlobalHandle
GetNumberOfConsoleMouseButtons
GetCurrentThreadId
GetStartupInfoA

winmm

GetDriverModuleHandle
waveOutUnprepareHeader
joyGetPosEx
DefDriverProc
mmioOpenA
mmioAscend
waveInOpen
mmioStringToFOURCCA
mmioGetInfo
mciGetDeviceIDW
midiStreamPause
midiStreamOut
PlaySoundA
PlaySoundW
mmioFlush
mmioInstallIOProcA
mixerGetControlDetailsW
midiOutPrepareHeader
midiInMessage
joyGetPos
waveOutRestart
midiInClose
waveInAddBuffer
mciGetDeviceIDFromElementIDW
timeGetDevCaps
waveInPrepareHeader
midiOutOpen
SendDriverMessage
waveInGetPosition
midiDisconnect
mmioWrite
midiOutGetErrorTextA
mixerGetLineInfoW
mixerGetLineControlsW
waveOutGetPlaybackRate
waveOutSetPlaybackRate
mixerGetDevCapsW
joyGetNumDevs
CloseDriver
midiOutReset
sndPlaySoundA
waveOutGetDevCapsW
midiInUnprepareHeader
mmioRead
auxSetVolume
mciSendStringA
waveOutGetNumDevs
midiOutGetDevCapsA
midiInStop
mmioClose
midiConnect
mixerClose
midiInGetErrorTextA
midiStreamRestart
midiOutCacheDrumPatches
waveOutGetID
waveOutOpen
waveOutGetPitch
waveOutGetErrorTextW
joyGetDevCapsA
waveInGetErrorTextA
joySetThreshold
waveOutPrepareHeader
waveOutWrite
midiOutUnprepareHeader
mixerMessage
waveOutBreakLoop
waveOutSetVolume
mixerGetID
mmioOpenW
sndPlaySoundW
auxGetVolume
mciSendCommandA
mciGetDeviceIDA
mciGetCreatorTask
waveInGetID
midiOutGetNumDevs
mmioRenameA
waveInGetDevCapsA
mmioSetInfo
midiStreamProperty
mixerGetNumDevs
waveInMessage
waveOutGetVolume
waveOutMessage
waveInClose
midiOutGetErrorTextW
mixerGetLineControlsA
mmioRenameW

shlwapi

PathFindOnPathW
PathIsDirectoryA
PathSkipRootW
StrCatW
PathAddBackslashW
PathSetDlgItemPathW
PathGetArgsW
SHRegQueryUSValueW

gdi32

FlattenPath
SetBitmapDimensionEx
StretchDIBits
FillPath
SetMapperFlags
GetPixelFormat
PlayMetaFile
DeleteObject
ExcludeClipRect
GetBkMode
OffsetWindowOrgEx
CreateHalftonePalette
GetBrushOrgEx
CombineRgn
GetBkColor
LineTo
EqualRgn
SetStretchBltMode
GetKerningPairsA
GetBoundsRect
PolyBezierTo
CreatePalette
StretchBlt
GetEnhMetaFileDescriptionA
ScaleViewportExtEx
GetTextMetricsA
GdiSetBatchLimit
RectVisible
RemoveFontResourceA
SelectClipRgn
BitBlt
RestoreDC
AbortDoc
CreateCompatibleBitmap
GetWindowOrgEx
EndPath
ExtEscape
GetCharWidthFloatA
EndPage
EnumFontsA
EnumFontFamiliesExA
WidenPath
OffsetClipRgn
DescribePixelFormat
SetBkColor
PlgBlt
GetCharacterPlacementW
PolyBezier
PlayMetaFileRecord
GetColorSpace
GetMetaFileBitsEx
CreateRectRgnIndirect
GetGlyphOutlineA
StrokeAndFillPath
StartPage
GetStockObject
CreateBitmap
GetTextCharacterExtra
GetMetaFileA
GetCharABCWidthsFloatW
GetCharWidthA
GdiFlush
TranslateCharsetInfo
GetWindowExtEx
UpdateColors
GetEnhMetaFileDescriptionW
GetTextCharset
Polygon
CreateColorSpaceA
GetTextCharsetInfo
GetTextMetricsW
SetBrushOrgEx
PathToRegion
SwapBuffers
PolyPolygon
GetOutlineTextMetricsA
EnumFontsW
GetDeviceCaps
GetEnhMetaFilePaletteEntries
LineDDA
SetPaletteEntries
PolylineTo
GetDeviceGammaRamp
GetEnhMetaFileBits
SetBkMode
GetTextExtentPointW
GetCharABCWidthsA
CreateDIBitmap
Polyline
SelectObject
GetTextColor
SetArcDirection
CreateFontA
GetFontData
CheckColorsInGamut
SetMetaFileBitsEx
FixBrushOrgEx
SelectClipPath
PolyPolyline
SetICMMode
FrameRgn
SetPolyFillMode
GetSystemPaletteUse
GetROP2
CreateDCA
GetOutlineTextMetricsW
GetTextAlign
CreateFontW
SaveDC
EnumObjects
CancelDC
SetICMProfileA
CreateMetaFileA
SetPixel
GetColorAdjustment
CreateDIBPatternBrushPt

advapi32

GetServiceKeyNameA
RegCreateKeyExW
LsaEnumerateTrustedDomains
GetAce
RegDeleteValueW
MapGenericMask
GetMultipleTrusteeA
RegCreateKeyA
BuildImpersonateExplicitAccessWithNameA
QueryServiceConfig2W
RegGetKeySecurity
LogonUserA
LookupPrivilegeNameW
BuildExplicitAccessWithNameW
RegSetValueA
LookupPrivilegeNameA
RegNotifyChangeKeyValue
ReportEventA
ChangeServiceConfig2A
RegQueryValueA
BuildImpersonateExplicitAccessWithNameW
DuplicateTokenEx
RegOpenKeyW
LookupPrivilegeValueA
ReadEventLogA
GetAclInformation
LsaSetInformationPolicy
SetTokenInformation
LockServiceDatabase
GetSidIdentifierAuthority
GetKernelObjectSecurity
GetSecurityDescriptorSacl
QueryServiceObjectSecurity
BuildTrusteeWithNameW
RegEnumValueW
SetSecurityInfo
EqualSid
MakeAbsoluteSD
SetSecurityDescriptorOwner
QueryServiceConfigA
CloseEventLog
RegEnumValueA
GetFileSecurityA
RegReplaceKeyA
GetServiceDisplayNameW
GetSecurityDescriptorOwner
RegCreateKeyW
GetSecurityInfo
BuildExplicitAccessWithNameA
ObjectOpenAuditAlarmW
LsaFreeMemory
RevertToSelf
QueryServiceConfig2A
FreeSid
RegQueryMultipleValuesA
ChangeServiceConfigA
RegConnectRegistryW
GetEffectiveRightsFromAclA
RegUnLoadKeyW
GetMultipleTrusteeW
RegDeleteKeyA
RegSetValueW
GetExplicitEntriesFromAclW
DeleteService
LookupAccountNameW
LsaSetTrustedDomainInfoByName
GetServiceKeyNameW
DecryptFileW
LsaClose
LsaCreateTrustedDomainEx
MakeSelfRelativeSD
CreateProcessAsUserA
BackupEventLogA
AddAccessDeniedAce
OpenBackupEventLogW
AdjustTokenGroups
LsaQueryInformationPolicy
IsValidAcl
RegisterServiceCtrlHandlerA
SetEntriesInAclA
RegCreateKeyExA
InitiateSystemShutdownW
QueryServiceLockStatusA
DuplicateToken
LsaNtStatusToWinError
RegLoadKeyA
OpenServiceW
GetTrusteeFormW
GetLengthSid
AccessCheck
BuildSecurityDescriptorW
SetKernelObjectSecurity
GetSidSubAuthorityCount
ReadEventLogW
GetFileSecurityW
QueryServiceStatus
OpenSCManagerW
StartServiceCtrlDispatcherW
LsaEnumerateTrustedDomainsEx
PrivilegedServiceAuditAlarmW
SetSecurityDescriptorSacl
InitiateSystemShutdownA

rasapi32

RasEnumDevicesA

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
_controlfp
_except_handler3
__set_app_type
__p__fmode

user32

DlgDirSelectExW
DdeAddData
DlgDirSelectComboBoxExA
InsertMenuA
IsDialogMessageA
EnumDisplaySettingsW
GetWindowTextLengthA
SetDlgItemInt
DlgDirListW
RemoveMenu
InsertMenuW
GetClassWord
DestroyAcceleratorTable
CheckMenuRadioItem
CreateDialogIndirectParamW
EnumDesktopsW
WindowFromDC
GetMessageExtraInfo
SetCursor
NotifyWinEvent
CreateIconIndirect
CallWindowProcA
GetClipboardFormatNameW
OpenInputDesktop
CharUpperW
UnregisterHotKey
DdeCreateDataHandle
OemKeyScan
CharNextExA
CreateDialogIndirectParamA
GetTopWindow
CreateIconFromResource
CreateIconFromResourceEx
GetScrollRange
ShowScrollBar
DefDlgProcW
EndDialog
GetPriorityClipboardFormat
RemovePropW
ShowCursor
HideCaret
CallNextHookEx
InSendMessage
BringWindowToTop
DdeUninitialize
SetWindowTextA
GetWindowModuleFileNameA
CloseDesktop
DlgDirSelectExA
CheckRadioButton
IsWindowEnabled
SetMenuItemInfoA
RegisterClassExA
GetSysColor
SetDlgItemTextA
EnumDisplaySettingsA
FlashWindow
SetClassWord
GetIconInfo
DrawTextExA
SetMenu
IsWindowVisible
MessageBoxExA
SetCapture
MessageBoxIndirectW
ReplyMessage
GetMenuDefaultItem
DrawTextW
GetKeyboardLayout
SetActiveWindow
SendMessageCallbackA
LoadMenuW
GetMenuContextHelpId
CreateCaret
DrawTextExW
GetProcessWindowStation
DdeCreateStringHandleA
MenuItemFromPoint
GetDesktopWindow
DrawTextA
SetClassLongA
GetPropW
VkKeyScanW
CreateCursor
RegisterClipboardFormatW
ToAscii
GetDlgCtrlID
OpenClipboard
SendMessageA
GetCaretPos
CharToOemA
SetDlgItemTextW
SendNotifyMessageW
SendMessageTimeoutA
SetScrollRange
GetWindowDC
GetClassInfoExA
GetForegroundWindow
LoadAcceleratorsA
EmptyClipboard
SetWindowsHookExA
SetPropA
PeekMessageW
MessageBoxW
DialogBoxIndirectParamW
OffsetRect
SetMenuDefaultItem
CheckMenuItem
CharLowerA
GetWindowTextW
AdjustWindowRectEx
ToUnicode
SetCursorPos
CharLowerBuffW
AppendMenuW
SetParent
LoadIconW
CharToOemBuffW
CountClipboardFormats
FillRect
CloseWindowStation
GetMenuItemInfoW
SetSystemCursor
GetNextDlgGroupItem
TranslateMessage
GetInputState
GetDlgItemTextA
SendNotifyMessageA
FreeDDElParam
ChangeClipboardChain
GetWindowWord
LoadKeyboardLayoutW
DrawAnimatedRects
GetClassNameW
SetPropW
ReuseDDElParam
EnumWindows
SendMessageW
SetWindowContextHelpId
DestroyCursor
SetWindowLongA
IsDialogMessageW
VkKeyScanExA
CopyAcceleratorTableA
IsZoomed
DlgDirListA
GetMessageA
RegisterClassExW
SetForegroundWindow
DrawFrameControl
GetKeyboardState
ChangeMenuA
CharPrevW
IsIconic
OemToCharA
KillTimer
SetKeyboardState
GetSystemMetrics
SetSysColors
LoadStringA
GetClassInfoExW
EqualRect
SystemParametersInfoA
WinHelpW
CharNextA
CreateWindowStationW
SetMenuItemInfoW
WaitForInputIdle
WINNLSGetIMEHotkey
GetGUIThreadInfo
InvalidateRect
DdeQueryNextServer
EndDeferWindowPos
PostThreadMessageW
PeekMessageA
GetWindowRect
GetDCEx
LoadImageA
GetClipCursor
GetMenuItemCount
GetCaretBlinkTime
IsRectEmpty
DestroyWindow
UnhookWinEvent
WINNLSEnableIME
GetCursorPos
SetUserObjectInformationA
wvsprintfW
GetCapture
InsertMenuItemW
EnumWindowStationsW
CreateWindowExW
LoadStringW
GetMenuCheckMarkDimensions
MsgWaitForMultipleObjectsEx
SetWindowPlacement
ActivateKeyboardLayout
FrameRect
SetWindowRgn
GetKBCodePage
CharPrevA
ModifyMenuW
GetQueueStatus
SetCaretBlinkTime
CharUpperBuffW
DeferWindowPos
EnumDesktopWindows
GetMessagePos
InvalidateRgn
ScrollDC
PaintDesktop
LoadCursorW
LoadImageW
ScrollWindowEx
TrackPopupMenu
DefMDIChildProcW
TranslateAcceleratorA
GetAsyncKeyState
InvertRect
ChildWindowFromPoint
OemToCharW
SendMessageCallbackW
ExcludeUpdateRgn
PostMessageA
DdeDisconnectList
LoadCursorFromFileA
TranslateMDISysAccel
GetWindowTextA
MapVirtualKeyW
AppendMenuA
GrayStringA
UnhookWindowsHookEx
DlgDirListComboBoxA
UpdateWindow
PtInRect
SetUserObjectSecurity
IsChild
GetDlgItemInt
LockWindowUpdate
DefWindowProcA
GetKeyboardLayoutNameA
EnableWindow
IsCharAlphaNumericA
EnumPropsExW
RemovePropA
IsCharLowerA
CreateWindowExA
SetWindowsHookExW
DdeClientTransaction
UnhookWindowsHook
GetMenuState
OemToCharBuffA
DdeQueryStringA
SetClassLongW
SetThreadDesktop
CreateDialogParamA
MapVirtualKeyExA
DefDlgProcA
GetSysColorBrush
IsWindow
RegisterClassA
LoadMenuA
ShowWindowAsync
ArrangeIconicWindows
GetScrollPos
SetRectEmpty
LoadBitmapW
GetKeyState
TrackPopupMenuEx
MapVirtualKeyA
LoadCursorA

winspool.drv

EnumPrintersA

pdh

PdhValidatePathA

Sections

.text
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d5741180d1f83e5ac5cb0190b307525

Headers

File Characteristics

Imports

kernel32

winmm

shlwapi

gdi32

advapi32

rasapi32

msvcrt

user32

winspool.drv

pdh

Sections

.text Size: 88KB - Virtual size: 86KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 4KB - Virtual size: 3.1MB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 88KB - Virtual size: 86KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 4KB - Virtual size: 3.1MB

.rsrc
Size: 20KB - Virtual size: 17KB