VirusShare_312e15381a72e2d9bdea2f9929cfb0f0

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_312e15381a72e2d9bdea2f9929cfb0f0
Size

288KB
MD5

312e15381a72e2d9bdea2f9929cfb0f0
SHA1

1141c9a64a0350490994ea0409b25a2bbeddb333
SHA256

baa4c692c13e89221711c8b6196226b032eb217e1ff66a067fceef886aff8d10
SHA512

77ed1dc1ce73ccaaea989560e8d243ffa8404b319e2d33baeb60b708373890705a1563f7accbd2b6d9ce7c5cbaa84ed3c0053c99662d09806a6859bb00ab094d
SSDEEP

3072:m54a7u33hXykURIb8z47v/GzDJZOyJLZF/mCBsOA6gELV8WozmWm81ddMw2CIiK5:WifURI1buzbOC+KP/8ddMbD6dN8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_312e15381a72e2d9bdea2f9929cfb0f0

Files

VirusShare_312e15381a72e2d9bdea2f9929cfb0f0
.exe windows:4 windows x86 arch:x86

fd7d474bd452a67c6bda496a04a537f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeAccessData
ToAsciiEx
GetMessageA
TranslateAcceleratorA

kernel32

GetStartupInfoA
GetModuleHandleA
CreateFileMappingA
GlobalGetAtomNameA
DeleteFileA
CreateFileA
GetFileAttributesA
GetProcessShutdownParameters

msvcrt

_adjust_fdiv
_exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
exit
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

winmm

mixerClose
waveOutGetPosition
mmioStringToFOURCCW
waveInAddBuffer
mmioSendMessage
waveOutOpen
mixerGetDevCapsA
waveOutReset
midiInGetErrorTextA
waveOutRestart
SendDriverMessage
waveOutSetPlaybackRate
timeBeginPeriod
midiStreamRestart
midiInUnprepareHeader
midiDisconnect
mmioSeek
mixerGetID
midiOutSetVolume
DrvGetModuleHandle
auxOutMessage
mmioInstallIOProcW
midiOutGetDevCapsA
midiInPrepareHeader
mmioFlush
midiInStart
waveOutGetVolume
CloseDriver
waveOutGetPlaybackRate
midiStreamPosition
midiInStop
midiInGetDevCapsA
waveOutSetPitch
mixerMessage
waveOutGetErrorTextW
midiOutGetDevCapsW
midiStreamStop
mciSendCommandA
midiOutReset
mmioAscend
midiInMessage
sndPlaySoundA
joyGetNumDevs
mciGetErrorStringW
mmioRenameA
mciGetDeviceIDFromElementIDW
mixerGetControlDetailsW
joyGetPos
mciGetDeviceIDW
midiInGetNumDevs
midiOutMessage
midiOutGetNumDevs
waveInMessage
mmioWrite
waveOutMessage
midiOutClose
waveInGetDevCapsW
midiInOpen
waveInUnprepareHeader
mixerGetLineControlsA
mciGetCreatorTask
midiOutUnprepareHeader
joyGetThreshold
waveInGetID
timeSetEvent
joyGetDevCapsA
waveOutGetPitch
midiStreamProperty
waveInGetNumDevs
midiStreamOut
midiInClose
timeGetDevCaps
GetDriverModuleHandle
waveInReset
waveInStop
mixerGetDevCapsW
mciSendStringA
joyGetDevCapsW
midiStreamClose
midiOutGetVolume
mciGetErrorStringA
waveInPrepareHeader
midiOutGetID
mixerOpen
mixerGetLineInfoA

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd7d474bd452a67c6bda496a04a537f6

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

winmm

Sections

.text Size: 96KB - Virtual size: 92KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 1.6MB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 96KB - Virtual size: 92KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 1.6MB

.rsrc
Size: 4KB - Virtual size: 2KB