VirusShare_672b51cdf3607f801cc98d66b294d6b0

General

Target

VirusShare_672b51cdf3607f801cc98d66b294d6b0
Size

101KB
MD5

672b51cdf3607f801cc98d66b294d6b0
SHA1

b05a40d37e41e1423b80b84420e079be20908fc8
SHA256

959d27ae3ef0ecf307da6fe08a6f105e07500ca3d9816cf19fecd878529db7f3
SHA512

cc43494914b75a245082326e6ad6fba6d5f05f151e3479fe99c233864d393ed033a6acd7b940d769c42800b18c1225ec386e2723f323b1bfb9bc7ea7f2ec30d4
SSDEEP

1536:YkSMScMwX+LxLeMVet5ozdKr1gRE5RyOFp878hKyWdA4IVifW:YRMRMu+sMVkoEr+OyObE8hKyWnNW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_672b51cdf3607f801cc98d66b294d6b0

Files

VirusShare_672b51cdf3607f801cc98d66b294d6b0
.dll windows:4 windows x86 arch:x86

8d28a154def5299942f91a590ef4a3cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

change0.pdb

Imports

kernel32

InterlockedCompareExchange

shlwapi

PathUnquoteSpacesA
StrChrIA
PathRemoveFileSpecW

setupapi

SetupDiCreateDeviceInterfaceA
SetupSetSourceListA
SetupDiClassNameFromGuidExA
SetupDefaultQueueCallbackA
SetupDiCreateDeviceInterfaceRegKeyA
SetupDeleteErrorA
SetupDiSetDriverInstallParamsA
SetupDiGetDeviceInstallParamsW
SetupInstallFileA
SetupOpenInfFileA
SetupQueryDrivesInDiskSpaceListA
SetupAddToDiskSpaceListA
SetupFindNextMatchLineW

Exports

Exports

ArrangeBkCommandEnvProperty
BitBootLink
ClusterCheckTable
EqualWaitErrorPer
HeapNamed
PrivilegeAssociatedSelectConvert
ResumeFixOut
SHFileCharRDN
TrackMiterVisibleIntInfo
UnlockChild
WindowCrackDuplicate

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d28a154def5299942f91a590ef4a3cc

Headers

File Characteristics

PDB Paths

Imports

kernel32

shlwapi

setupapi

Exports

Exports

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 49KB - Virtual size: 49KB

.tls Size: 1024B - Virtual size: 1024B

.reloc Size: 512B - Virtual size: 8KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 49KB - Virtual size: 49KB

.tls
Size: 1024B - Virtual size: 1024B

.reloc
Size: 512B - Virtual size: 8KB