VirusShare_6ca92e8e78ff66c8813e16a66a4b9878

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_6ca92e8e78ff66c8813e16a66a4b9878
Size

47KB
MD5

6ca92e8e78ff66c8813e16a66a4b9878
SHA1

13568f14b04253363051179d5ae1cb0bd62b6b2b
SHA256

260aef0f7dfeb4f4de24c7da577540ce35514d058818b5c29c02be365c4d4c96
SHA512

ed462e3bdb367f8a4f5c10af139513a2283f4e1f77add5c24c242b197230a6a91dc93e7fff076a76bf9e90c04479258d537f6e0f193af46d1c9ae766dff9f7e2
SSDEEP

768:RxvRxf2qDdN6h7xKZCsrgEDOen53HAQw6Qwe5rD7pIyKZ:LR5vhNm7Nsrx2z6zG1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_6ca92e8e78ff66c8813e16a66a4b9878

Files

VirusShare_6ca92e8e78ff66c8813e16a66a4b9878
.exe windows:5 windows x86 arch:x86

18f30e8b6dacb29def7b2f25f2344ca3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ToAsciiEx
GetActiveWindow
RedrawWindow
DestroyAcceleratorTable
DestroyWindow
SetMenu
wsprintfA
SetWinEventHook
FindWindowA
WinHelpW
EnumDisplayDevicesW
DefMDIChildProcA
IntersectRect
WaitMessage
CharNextW
CreateIconIndirect
GetGUIThreadInfo
DdeInitializeW
UnpackDDElParam
IsWindowVisible
MenuItemFromPoint
MapVirtualKeyA
AppendMenuW
GetCaretBlinkTime
mouse_event
ChildWindowFromPoint
MapDialogRect
ImpersonateDdeClientWindow
IsCharAlphaA
IsCharLowerA

kernel32

WriteFile
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapReAlloc
IsProcessorFeaturePresent
RtlUnwind
HeapSize
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
Sleep
HeapFree
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
lstrcmpA
GetLastError
CopyFileA
HeapAlloc
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
GetStdHandle
GetModuleFileNameW
HeapCreate
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
TlsAlloc
TlsGetValue

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18f30e8b6dacb29def7b2f25f2344ca3

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 2KB - Virtual size: 2KB