VirusShare_09406c777a67c35d7bfa60c77d4c8350

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_09406c777a67c35d7bfa60c77d4c8350
Size

424KB
MD5

09406c777a67c35d7bfa60c77d4c8350
SHA1

83b82bf246f633b46bedf81bc081f602cd17af69
SHA256

2280a05deee636ce4fe6a50a5298b1e7acb5d8a74778c7f96104b592fed7a277
SHA512

4fba3f9efec34f5090df6fef6c693c4845c84dd0f90ebb375c7a0f02d8c61c8ffca2226037a5ebc38e72a0f22870e8bff3a16908f75f34f2006c1dcb30211c81
SSDEEP

6144:hITkSik5/UHAueNyH4PgKixcRwFWPBR8lU3u0exh3fa9PzulHg8raM:hwis/KAuW9VRyWPwU3T+3fmQHg8z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_09406c777a67c35d7bfa60c77d4c8350

Files

VirusShare_09406c777a67c35d7bfa60c77d4c8350
.exe windows:5 windows x86 arch:x86

428c56196ab402bedc3cd98062e71e0d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuDefaultItem
DrawStateW
GetAltTabInfoW
GetAsyncKeyState
BroadcastSystemMessageA
DialogBoxIndirectParamW
IsCharLowerW
IsWindowEnabled
SetUserObjectInformationA
ChildWindowFromPointEx
EnableWindow
GetDlgItem
MessageBoxW
ShowWindow
FindWindowExW
GetParent
MapWindowPoints
CreateWindowExW
UpdateWindow
LoadCursorW
RegisterClassExW
DefWindowProcW
DestroyWindow
CopyRect
CharUpperW
CharToOemA
OemToCharA
OemToCharBuffA
LoadIconW
LoadBitmapW
PostMessageW
SetForegroundWindow
WaitForInputIdle
IsWindowVisible
DialogBoxParamW
DestroyIcon
SetFocus
GetClassNameW
SendDlgItemMessageW
EndDialog
GetDlgItemTextW
SetDlgItemTextW
wvsprintfW
SendMessageW
GetDC
ReleaseDC
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
LoadStringW
GetWindowRect
GetClientRect
SetWindowPos
GetWindowTextW
SetWindowTextW
GetSystemMetrics
GetWindow
GetWindowLongW
SetWindowLongW
IsWindow
DrawFocusRect
GetSysColor

shell32

SHBrowseForFolderW
ExtractIconW
ExtractIconExW
DragAcceptFiles
Shell_NotifyIconW
ShellExecuteExW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW
SHFileOperationW
SHChangeNotify
SHGetMalloc
ExtractAssociatedIconW

ole32

CoLockObjectExternal
CoBuildVersion
CoRegisterClassObject
CreateStreamOnHGlobal
OleUninitialize
OleInitialize
CoCreateInstance
CLSIDFromString
CoGetCurrentProcess

advapi32

GetSecurityDescriptorDacl
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
GetSidSubAuthority
PrivilegedServiceAuditAlarmA
RegDeleteValueA
SetSecurityDescriptorSacl
ObjectOpenAuditAlarmA
RegFlushKey
DeleteAce

gdi32

GetObjectW
SelectObject
StretchBlt
DeleteDC
DeleteObject
AddFontResourceW
ColorMatchToTarget
CreateBitmapIndirect
CreateDCW
CreateCompatibleDC
AbortPath
AddFontResourceA
CreateBrushIndirect
CreateCompatibleBitmap
CloseMetaFile
GetDeviceCaps

comctl32

InitCommonControlsEx

shlwapi

SHAutoComplete

kernel32

GetNumberFormatW
ExpandEnvironmentStringsW
WaitForSingleObject
GetDateFormatW
GetTimeFormatW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetExitCodeProcess
GetTempPathW
MoveFileExW
Sleep
UnmapViewOfFile
MapViewOfFile
GetCommandLineW
CreateFileMappingW
GetTickCount
SetEnvironmentVariableW
OpenFileMappingW
WideCharToMultiByte
MultiByteToWideChar
CompareStringW
IsDBCSLeadByte
GetCPInfo
GlobalAlloc
SetCurrentDirectoryW
WriteConsoleW
GetConsoleOutputCP
GetDateFormatA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetConsoleMode
GetConsoleCP
GetLocaleInfoW
QueryPerformanceCounter
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetModuleFileNameA
ExitProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
InterlockedIncrement
InterlockedDecrement
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetModuleHandleA
CompareStringA
SetEnvironmentVariableA
LoadLibraryW
GetProcAddress
FreeLibrary
GetModuleHandleW
FindResourceW
GetModuleFileNameW
GetFullPathNameW
FindFirstFileW
FindNextFileW
FindClose
CreateDirectoryW
DeleteFileW
MoveFileW
SetFileAttributesW
GetFileAttributesW
InitializeCriticalSectionAndSpinCount
GetTimeFormatA
SetStdHandle
GlobalFindAtomA
TlsFree
TlsSetValue
VirtualAllocEx
OpenProcess
GetCurrentProcessId
VirtualQueryEx
GetPrivateProfileStringW
GetFileTime
SetCalendarInfoA
VirtualFree
DeviceIoControl
IsBadStringPtrW
HeapFree
RtlUnwind
RaiseException
HeapReAlloc
HeapAlloc
GetSystemTimeAsFileTime
WriteConsoleA
CreateFileA
GetCurrentDirectoryW
GetLastError
SetLastError
DosDateTimeToFileTime
LocalFileTimeToFileTime
CreateFileW
CloseHandle
WriteFile
FlushFileBuffers
GetStdHandle
SetFilePointer
SetEndOfFile
GetFileType
ReadFile
SetFileTime
GetCommandLineA
GetStartupInfoA
HeapCreate
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
TlsGetValue
TlsAlloc

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.compot
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 235KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

428c56196ab402bedc3cd98062e71e0d

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

comctl32

shlwapi

kernel32

Sections

.text Size: 134KB - Virtual size: 133KB

.data Size: 5KB - Virtual size: 173KB

.compot Size: 49KB - Virtual size: 48KB

.rsrc Size: 235KB - Virtual size: 234KB

.text
Size: 134KB - Virtual size: 133KB

.data
Size: 5KB - Virtual size: 173KB

.compot
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 235KB - Virtual size: 234KB