VirusShare_aed9ed3db672e88a350984c6a6a2a3b0

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_aed9ed3db672e88a350984c6a6a2a3b0
Size

284KB
MD5

aed9ed3db672e88a350984c6a6a2a3b0
SHA1

a6f5d9a62163468be0b838b0775914b55d36a6a3
SHA256

59320fdc9f31d81f36f11954d9334978f85eca560bb679c2793e4f2f98fdc71a
SHA512

bb9e34b8e28bcbe64e47a5e633ea904df767b80134afb18074b3f6a166b29a338247710f6775b088cfc771612df1d692dcc47cdb9919c4b703224d333fdebd35
SSDEEP

6144:ODO/VQPbcKTo2L34lDPaPInyd2aLBUD3pvp:ODgmo2sZP+IvgWp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_aed9ed3db672e88a350984c6a6a2a3b0

Files

VirusShare_aed9ed3db672e88a350984c6a6a2a3b0
.dll windows:4 windows x86 arch:x86

6ed00e2d54f4c769d1f0dda1833e375d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetConsoleTitleW
SetTimerQueueTimer
AreFileApisANSI
SetCalendarInfoW
WritePrivateProfileSectionW
EnumCalendarInfoA
FreeLibrary
InterlockedExchange
RequestWakeupLatency
ReadConsoleInputA
SetProcessAffinityMask
EnumDateFormatsExA
GetSystemWindowsDirectoryW
FileTimeToSystemTime
GetExitCodeProcess
WriteTapemark
GetLocaleInfoW
SetEvent
GetPrivateProfileIntA
GetNamedPipeHandleStateA
SearchPathA
CreateThread
SetTimeZoneInformation
DuplicateHandle
GetCommTimeouts
GetFileAttributesA
ReplaceFileA
CreateEventA
VerifyVersionInfoW
SetConsoleOutputCP
AddAtomA
GetCommandLineW
ConnectNamedPipe
GetProcessIoCounters
SetCalendarInfoA
GetTapePosition
IsProcessorFeaturePresent
MoveFileW
GetConsoleTitleW

user32

IsDlgButtonChecked
LoadKeyboardLayoutW
TrackPopupMenuEx
SetCapture
MonitorFromRect
LoadCursorW
TrackMouseEvent
DlgDirListComboBoxA
DlgDirListW
EnumWindowStationsA
GetSystemMetrics
SetWindowContextHelpId
DispatchMessageW
GetKBCodePage
SetMessageExtraInfo
GrayStringW
DeleteMenu
RegisterClassExA
EnumWindows
GetProcessWindowStation
GetMessageW
ShowWindow
wsprintfW
GetWindowTextLengthW

Exports

Exports

CheckPenPublic
CommitConnectEncoded
HttpCurrentFreeEntry
LCMapDialogFaceKey
LCMapEnableIds
ObjectPerformanceAll
PlgComputerProfilesRead
RegisterAppendLogicalLocales
StretchUndecorateData
VerifyBadSignature

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ed00e2d54f4c769d1f0dda1833e375d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 42KB

.data Size: 16KB - Virtual size: 81KB

.reloc Size: 96KB - Virtual size: 94KB

.tls Size: 8KB - Virtual size: 6KB

.rsrc Size: 112KB - Virtual size: 112KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 42KB

.data
Size: 16KB - Virtual size: 81KB

.reloc
Size: 96KB - Virtual size: 94KB

.tls
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 112KB - Virtual size: 112KB

.reloc
Size: 4KB - Virtual size: 4KB