VirusShare_f4b54fc054606d9cc7cb5cde04df1a9b | Triage

Sharing

General

Target

VirusShare_f4b54fc054606d9cc7cb5cde04df1a9b
Size

146KB
MD5

f4b54fc054606d9cc7cb5cde04df1a9b
SHA1

72e6c398e3a27136a7dee0c85d01b5e37a8926ba
SHA256

b9761d12044c02adb84dee1efc641fd721e91ea480c6628b66da0c05b197a38d
SHA512

fa7912670b76a08267e63e4fcab5d9d644f5e4fc99a90891fccf4ca0956eef96e738ea742cb37f6efced847f03caf25df11c5f0f6f64628775e8ad3a8196dbb3
SSDEEP

3072:16mCoCc+6tLs1w+GgJDppjc9rRk9Fl4Unmat8ZMle1N5EAGBrYhVP:16mCLc7s1w+tqrR6l4Umat8Glef2Aerg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_f4b54fc054606d9cc7cb5cde04df1a9b

Files

VirusShare_f4b54fc054606d9cc7cb5cde04df1a9b
.exe windows:4 windows x86 arch:x86

ef42114201bd5b2ae491b792def892b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForMultipleObjects
GlobalSize
GetUserDefaultLangID
InterlockedExchange
SetLastError
GetConsoleCP
GetVersion
GlobalUnlock
LoadLibraryExA
lstrlenA
GetAtomNameA
GetTickCount
GetModuleHandleA
CompareFileTime
WaitForSingleObject
HeapCreate
VirtualProtect
GetConsoleDisplayMode
HeapReAlloc
ResumeThread
GetCommandLineA

user32

wsprintfA
DragDetect
CreateIcon
GetFocus
BeginPaint
GetWindow
ReleaseDC
GetClassNameA
GetCursorPos
DrawTextA
ShowWindow
AnyPopup
GetDC
GetParent
FillRect
FrameRect
GetTitleBarInfo
SetForegroundWindow
EndPaint

rastapi

AddPorts
DeviceDone
DeviceConnect
DeviceListen
PortClose

quartz

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ