VirusShare_bd8241f3dcb16fa34bf7e7e2154f75d2

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_bd8241f3dcb16fa34bf7e7e2154f75d2
Size

2.8MB
MD5

bd8241f3dcb16fa34bf7e7e2154f75d2
SHA1

b06acaf84dd10729a2bd3beef50109ed5a796362
SHA256

87caa12e7dada7214d7c3f04528e6ce0246bfd0233d4ea07b93da38ee4967f5e
SHA512

d4621cebdc23dde5fb285ed1de7f4fdd043afa3f2caa874e95595ec996eb6d28e847456bc158557063a8abbb9ec4c2bc51ed8fa883b128ddffb7d1960aeb193f
SSDEEP

49152:j5yyWrW2wowXTgjw3a6xDZ3DRkD0sOue30HNxBje0fVUI1r7D4Ldbd0feX3A4uVj:05uXTZ3aWDTkD0si0lVl7DUZjn8VNnJn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_bd8241f3dcb16fa34bf7e7e2154f75d2

Files

VirusShare_bd8241f3dcb16fa34bf7e7e2154f75d2
.dll regsvr32 windows:4 windows x86 arch:x86

0ded6f7d64966209fab965f6d70089b1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EscapeCommFunction
HeapCreate
EnumResourceLanguagesA
DeleteTimerQueueTimer
ConvertDefaultLocale
GetTimeFormatW
GetSystemDirectoryW
GlobalHandle
HeapReAlloc
UnlockFile
GetDriveTypeW
FindFirstFileExW
FlushViewOfFile
CreateProcessA
GetFileInformationByHandle
GetEnvironmentStringsW
GetFullPathNameW
GetProcAddress
LoadLibraryA

ole32

CoSwitchCallContext
CreateOleAdviseHolder
OleUninitialize
CoEnableCallCancellation
SetConvertStg

user32

InsertMenuA
GetSystemMetrics
InsertMenuW
SetWindowWord
BeginPaint
DefWindowProcA
HideCaret
CharLowerW
EndDeferWindowPos
GetMenuItemID
KillTimer
RemovePropW
MessageBoxExA
BeginDeferWindowPos
DialogBoxParamA
GetDlgCtrlID
InSendMessageEx
GetDialogBaseUnits
MessageBeep
ModifyMenuA
EndDialog
GetClassLongA
GetSysColor
GetWindowRect
EnableScrollBar
GetWindow

oleaut32

SysStringLen

shlwapi

PathRemoveFileSpecA
PathRemoveExtensionW
PathAddBackslashA
PathIsDirectoryW

advapi32

CloseServiceHandle
SetEntriesInAclW
RegSetValueW
OpenEventLogW
QueryServiceLockStatusW

shell32

SHGetFolderPathW
ShellExecuteExW

gdi32

SetBkMode
AddFontResourceA
ExtFloodFill
GetObjectW
GetCharWidthA
GetCharABCWidthsW
GetPixel
Polyline
CreateBrushIndirect
BitBlt
GetBitmapDimensionEx
ResizePalette
PolylineTo
GetPixelFormat
DeleteObject

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0ded6f7d64966209fab965f6d70089b1

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

shell32

gdi32

Exports

Exports

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 1.7MB - Virtual size: 1.7MB

.reloc Size: 72KB - Virtual size: 69KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 1.7MB - Virtual size: 1.7MB

.reloc
Size: 72KB - Virtual size: 69KB