VirusShare_2e7d59eccec75956447f59908fad930a

Sharing

Copy URL

Twitter E-mail

General

Target

VirusShare_2e7d59eccec75956447f59908fad930a
Size

411KB
MD5

2e7d59eccec75956447f59908fad930a
SHA1

fa460dc11b76fcd7324d9c0a1dc3fc8cf184d9c0
SHA256

8fb3a41b9b333b7cdf7614055842ad75d8b6253fdedf7d00b2ac0537e89f5dc8
SHA512

9a0b26f9ccc7e4281502ca7a816b7c41d6cc964c438fc17948415e9cd8ed05781f1bb59b953447db092eaecafcac4d292eb0bad1b0197c34c1bc6ca92abc8e61
SSDEEP

3072:j4rGNC4AAh8o3aEi4R3KpTOmvSI5Cp0xH5+4nKAMsqYaqNN5T:j4rGgPBo3aEi4RgRT0EHKAVaW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
VirusShare_2e7d59eccec75956447f59908fad930a

Files

VirusShare_2e7d59eccec75956447f59908fad930a
.exe windows:5 windows x86 arch:x86

2b790f309c93232cb524428cb9f816da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringA
WideCharToMultiByte
WaitForSingleObject
VirtualQuery
VirtualProtect
VirtualFree
UpdateResourceW
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateThread
TerminateProcess
Sleep
SetUnhandledExceptionFilter
SetStdHandle
SetPriorityClass
SetLastError
SetHandleInformation
SetHandleCount
SetFilePointer
SetEvent
SetEnvironmentVariableW
SetEnvironmentVariableA
SetEndOfFile
SetCurrentDirectoryW
SetConsoleCursor
RtlUnwind
RtlMoveMemory
RemoveDirectoryW
RemoveDirectoryA
ReleaseMutex
ReadFile
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
PeekNamedPipe
PeekConsoleInputA
OpenProcess
MoveFileW
MoveFileA
LocalShrink
LocalFree
LocalAlloc
LoadLibraryW
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsDebuggerPresent
IsBadWritePtr
IsBadReadPtr
IsBadCodePtr
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapLock
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalAlloc
VirtualAllocEx
GetWindowsDirectoryW
GetUserDefaultLangID
GetUserDefaultLCID
GetTimeZoneInformation
GetTickCount
GetSystemWindowsDirectoryA
GetSystemTimeAsFileTime
GetSystemInfo
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProfileIntA
GetProcessShutdownParameters
GetProcAddress
GetPrivateProfileStringA
GetOverlappedResult
GetOEMCP
GetFullPathNameW
GetFullPathNameA
GetFileType
GetFileSize
GetFileInformationByHandle
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDriveTypeW
GetDiskFreeSpaceW
GetDefaultCommConfigW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetConsoleTitleA
GetCommandLineA
GetCommProperties
GetCPInfo
GetACP
FreeUserPhysicalPages
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageW
FormatMessageA
FlushFileBuffers
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitThread
EnumSystemLocalesA
EnumDateFormatsExW
EnterCriticalSection
DeleteVolumeMountPointW
DeleteFileW
DeleteFileA
DeleteCriticalSection
DefineDosDeviceW
CreateThread
CreateTapePartition
CreateProcessA
CreatePipe
CreateMutexW
CreateMutexA
CreateFileW
CreateFileMappingA
CreateEventA
CreateDirectoryW
CreateConsoleScreenBuffer
CompareFileTime
CancelIo
GetModuleHandleW

user32

SetFocus
SetDebugErrorLevel
SetCursor
SetClipboardViewer
SetClipboardData
SetCaretPos
SetCapture
SendMessageW
SendMessageA
ScrollWindowEx
ScreenToClient
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterWindowMessageA
RegisterClipboardFormatA
RegisterClassW
RegisterClassA
PostThreadMessageW
PostMessageW
PostMessageA
PeekMessageW
PeekMessageA
OpenClipboard
MsgWaitForMultipleObjects
MoveWindow
MessageBoxA
MessageBeep
MapVirtualKeyW
MapVirtualKeyA
LoadKeyboardLayoutW
LoadIconW
LoadCursorA
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsRectEmpty
IsIconic
IsChild
InvalidateRect
HideCaret
GetWindowRgn
GetWindowRect
GetWindowPlacement
SetForegroundWindow
GetWindowDC
GetUpdateRgn
GetUpdateRect
GetSystemMetrics
GetSystemMenu
GetSysColor
GetParent
GetMessageW
GetMessageA
GetKeyboardLayoutNameA
GetKeyState
GetFocus
GetDoubleClickTime
GetDlgItemInt
GetDesktopWindow
GetDC
GetCursorPos
GetClipboardData
GetClientRect
GetClassLongA
GetCaretBlinkTime
GetActiveWindow
FindWindowExW
ExitWindowsEx
EnumClipboardFormats
EndPaint
EnableMenuItem
EmptyClipboard
DrawIconEx
DrawFocusRect
DlgDirSelectComboBoxExA
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyIcon
DestroyCursor
DefWindowProcW
DefWindowProcA
DdePostAdvise
DdeGetData
CreateWindowExW
CreateWindowExA
CreateIconIndirect
CreateCursor
CreateCaret
CopyIcon
SetParent
SetRect
SetTimer
SetWindowLongA
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TrackPopupMenuEx
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
ValidateRgn
WindowFromPoint
wsprintfA
GetWindowLongA
CloseWindow
CloseClipboard
ClientToScreen
ChangeClipboardChain
CallNextHookEx
BroadcastSystemMessageW
BeginPaint
LoadIconA
CharLowerW
LoadCursorW
PostThreadMessageA

gdi32

CreateEllipticRgn
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CopyMetaFileW
CombineRgn
Chord
BitBlt
BeginPath
Arc
AddFontMemResourceEx
EnableEUDC
EndPath
EngFillPath
EngFreeModule
EngGetDriverName
EngMarkBandingSurface
EngStretchBlt
EngTransparentBlt
EnumFontFamiliesExA
EnumFontFamiliesExW
EnumFontsA
EnumICMProfilesW
EqualRgn
ExtCreatePen
ExtCreateRegion
ExtTextOutW
FONTOBJ_pvTrueTypeFontFile
FillPath
FlattenPath
GdiEntry11
GdiEntry13
GdiFlush
GdiQueryTable
GetBkColor
GetCharABCWidthsA
GetCharABCWidthsFloatW
GetCharABCWidthsW
GetCharWidthFloatA
GetClipRgn
GetCurrentPositionEx
GetDIBits
GetDeviceCaps
GetFontData
GetGlyphIndicesW
GetGlyphOutlineA
GetGlyphOutlineW
GetMetaFileA
GetNearestPaletteIndex
GetObjectA
GetObjectW
GetOutlineTextMetricsA
GetPaletteEntries
GetRandomRgn
GetRegionData
CreateEnhMetaFileW
GetStockObject
GetSystemPaletteEntries
GetTextCharsetInfo
GetTextExtentExPointI
GetTextExtentPoint32W
GetTextMetricsA
GetTextMetricsW
GetWindowExtEx
LineTo
MaskBlt
ModifyWorldTransform
MoveToEx
OffsetRgn
PaintRgn
PatBlt
Pie
PlayEnhMetaFileRecord
PolyBezier
Polygon
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
ResizePalette
RoundRect
ScaleViewportExtEx
SelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetDCBrushColor
SetDIBitsToDevice
SetGraphicsMode
SetMetaRgn
SetPaletteEntries
SetPixelV
SetPolyFillMode
SetROP2
SetStretchBltMode
SetSystemPaletteUse
SetTextAlign
SetTextColor
SetWindowOrgEx
SetWorldTransform
StretchBlt
StretchDIBits
StrokePath
TextOutA
TextOutW
UnrealizeObject
WidenPath
cGetTTFFromFOT
CreateFontA
CreateFontIndirectA
CreateFontIndirectW
CreateHalftonePalette
CreateHatchBrush
CreatePalette
CreatePatternBrush
CreatePen
CreatePolygonRgn
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
GetRgnBox
Ellipse

advapi32

RegOpenKeyExW
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegOpenKeyExA
RegFlushKey
RegCreateKeyExW
RegCreateKeyExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyA
RegQueryValueExA

shell32

SHGetDiskFreeSpaceExW
ShellExecuteW
DragAcceptFiles
DragQueryFileAorW
ExtractIconA
FindExecutableA
SHAddToRecentDocs
SHEmptyRecycleBinW
SHFileOperationW
SHGetDataFromIDListW
Shell_NotifyIcon
SHGetFolderPathA
SHGetIconOverlayIndexA
SHGetIconOverlayIndexW
SHGetPathFromIDList
SHGetPathFromIDListA
SHIsFileAvailableOffline
SHLoadInProc
SHQueryRecycleBinA
ShellExecuteExW

shlwapi

StrCmpNIA
StrRChrIA

imm32

ImmNotifyIME
ImmGetContext
ImmGetCompositionStringW
ImmGetCompositionStringA
ImmAssociateContext
ImmSetCandidateWindow
ImmSetCompositionFontA
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmReleaseContext

Sections

.text
Size: 219KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b790f309c93232cb524428cb9f816da

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

shlwapi

imm32

Sections

.text Size: 219KB - Virtual size: 218KB

.rdata Size: 82KB - Virtual size: 81KB

.data Size: 69KB - Virtual size: 69KB

.rsrc Size: 40KB - Virtual size: 40KB

.text
Size: 219KB - Virtual size: 218KB

.rdata
Size: 82KB - Virtual size: 81KB

.data
Size: 69KB - Virtual size: 69KB

.rsrc
Size: 40KB - Virtual size: 40KB