VirusShare_26a786067e8726f4317a70d049323c9d

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_26a786067e8726f4317a70d049323c9d
Size

196KB
MD5

26a786067e8726f4317a70d049323c9d
SHA1

ebe475c36975b55df11055cab6ba60650570a47f
SHA256

c7d9b7e3cc672d0bb588d247b5860527d8e48eb0ae642ab4454ff12cb921d8e3
SHA512

2819cbdc80882aee9f058971dbb6249a652811914dc1c4b4b398146f303d75dcd2b07f54262ab6b93e5796edde0c3f68b83e9fdd09451c5283699111cee8842c
SSDEEP

3072:gkqMMOSSqEr8635YjdGz/NyAVehVPz5ZGy8ZM378Ts7nlE6S:54Eo6JBDV0PzvGnCQKlT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_26a786067e8726f4317a70d049323c9d

Files

VirusShare_26a786067e8726f4317a70d049323c9d
.exe windows:4 windows x86 arch:x86

ca1a29faa5800fd649fc2b6c695268a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerFindFileW
VerQueryValueW
VerFindFileA
VerInstallFileW

wininet

FindFirstUrlCacheEntryExA
InternetReadFileExA
InternetFindNextFileA
FindFirstUrlCacheEntryExW
InternetCombineUrlA
InternetCheckConnectionW
InternetCombineUrlW
HttpQueryInfoW
InternetOpenUrlW
InternetConnectW
HttpAddRequestHeadersW
InternetQueryOptionW
InternetOpenUrlA
InternetCanonicalizeUrlW
HttpSendRequestExW
HttpSendRequestExA
InternetSetOptionExA
InternetQueryDataAvailable

imm32

ImmIsUIMessageA

shlwapi

PathFindOnPathW
PathIsUNCServerA
StrToIntW
PathCanonicalizeW

rasapi32

RasEnumEntriesW
RasDeleteEntryW
RasGetEntryDialParamsW

imagehlp

MapFileAndCheckSumW
SymGetSymFromName
ImageAddCertificate
MapDebugInformation
MapAndLoad
FindDebugInfoFile
ImageGetCertificateData
ImageGetDigestStream
SymGetSearchPath
SymCleanup
EnumerateLoadedModules
ImageLoad
ImageRemoveCertificate
ImageRvaToSection

mpr

WNetCancelConnection2W
WNetCancelConnectionA
WNetGetUserW
WNetGetConnectionW
WNetGetUniversalNameW
WNetConnectionDialog1A

gdi32

SetAbortProc
CreateRectRgn
DeleteEnhMetaFile
GetWindowOrgEx
EnumFontsW
SetDIBits
GetTextCharset
OffsetViewportOrgEx
RoundRect
GetDIBits
SetMapperFlags
Polyline
CreateDIBPatternBrushPt
GetCurrentPositionEx
SetBoundsRect
SetTextAlign
GetOutlineTextMetricsA
GetCharWidth32W
ExtTextOutW
CreateHalftonePalette
CreateRoundRectRgn
CreateDIBitmap
SetWorldTransform
CreateFontIndirectA
RectInRegion
GetSystemPaletteUse
GetClipRgn
SetROP2
EnumFontFamiliesW
GetTextMetricsW
StrokeAndFillPath
Chord
StretchDIBits
InvertRgn
CreateICA
OffsetClipRgn
EnumFontFamiliesExW
CreatePen
ExtFloodFill
SetTextCharacterExtra
SelectPalette
SetRectRgn
MaskBlt
GetPath
PolylineTo
CreatePatternBrush
GetBoundsRect
CreateHatchBrush
SetEnhMetaFileBits
RestoreDC
CreateFontW
GetMetaFileBitsEx
SetTextJustification
PathToRegion
GetTextColor
GetTextCharsetInfo
TextOutW
GetTextExtentPointA
CreateRectRgnIndirect
ExtCreateRegion
GetWorldTransform
GetTextMetricsA
CreateEllipticRgnIndirect
GetTextExtentPoint32W
SetColorAdjustment
SetViewportOrgEx
GetBkColor
GetObjectW
CreateDCA
CreateCompatibleDC
SetBkMode
SetWindowOrgEx
GetNearestPaletteIndex
ExtEscape
SetPixelV
CreateICW
GetTextFaceA
CreateMetaFileW
GetStockObject
SetPixel
CreateMetaFileA
TranslateCharsetInfo
SetWindowExtEx
CreateDCW
SetBkColor
GetTextCharacterExtra

winmm

joyGetDevCapsW
mciGetErrorStringW
mixerGetControlDetailsW
auxGetDevCapsW
mmioRenameA
waveInGetPosition
mmioSendMessage
waveOutRestart
waveOutPause
joyGetThreshold
timeSetEvent
mixerGetNumDevs
mixerGetLineInfoW
timeGetSystemTime
mixerGetLineControlsA
mixerGetLineControlsW
DefDriverProc
CloseDriver
midiOutGetDevCapsA
mixerGetID
mixerSetControlDetails
waveOutGetPitch
mciGetDeviceIDFromElementIDA
PlaySoundA
waveInGetDevCapsW
timeGetTime
waveOutUnprepareHeader
mmioOpenW

Sections

.text
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca1a29faa5800fd649fc2b6c695268a3

Headers

File Characteristics

Imports

version

wininet

imm32

shlwapi

rasapi32

imagehlp

mpr

gdi32

winmm

Sections

.text Size: 140KB - Virtual size: 136KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 24KB - Virtual size: 151KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 140KB - Virtual size: 136KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 24KB - Virtual size: 151KB

.rsrc
Size: 4KB - Virtual size: 1KB