VirusShare_0c417df87dbbd3562b4ced333d39f760

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_0c417df87dbbd3562b4ced333d39f760
Size

199KB
MD5

0c417df87dbbd3562b4ced333d39f760
SHA1

84b470aa4b385e90501aa3dea81aae5b0425a839
SHA256

c49f84ffb4dc324a8e209cf62294ff71486dc6afade018188df620d9c30cb822
SHA512

227fa35f6c59117373b65fe27f33d937cb0ce17e3c62c6314e5f811a7fd38b0ab3032d1d7fe7d6dda4b63032ae92d3533a8e5ba1e61b17cdcf00dee3083a8640
SSDEEP

3072:ZBEU3jXsJ6mQrdTKypHgWTzEQJV3so+RBBI0Ic9oZO0cUL4qSZGhf6owD/aHmJ:Z1sJtQrd1ldEQcHDBIXZOBQu8FwDiHW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_0c417df87dbbd3562b4ced333d39f760

Files

VirusShare_0c417df87dbbd3562b4ced333d39f760
.dll windows:5 windows x86 arch:x86

fd3b7294d44ad9b6826ab2a731a36966

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
AllocateUserPhysicalPages
BindIoCompletionCallback
BuildCommDCBW
CallNamedPipeA
ContinueDebugEvent
ConvertDefaultLocale
CreateFileMappingW
CreateFileW
CreateIoCompletionPort
CreateJobObjectW
CreateMailslotA
CreateNamedPipeA
CreateRemoteThread
CreateSemaphoreW
CreateToolhelp32Snapshot
CreateWaitableTimerW
DisableThreadLibraryCalls
EnumCalendarInfoExA
EnumCalendarInfoExW
EnumLanguageGroupLocalesA
EnumResourceNamesA
EnumResourceTypesW
FatalAppExitW
FileTimeToSystemTime
FindClose
FindFirstChangeNotificationW
FindNextFileA
FindResourceA
FindResourceW
FlushViewOfFile
FormatMessageA
FreeConsole
GenerateConsoleCtrlEvent
GetACP
GetCurrentThread
GetDefaultCommConfigW
GetFileAttributesExA
GetFileAttributesW
GetFullPathNameA
GetLargestConsoleWindowSize
GetLastError
GetNumberFormatW
GetPrivateProfileIntW
GetPrivateProfileSectionNamesW
GetShortPathNameW
GetSystemDefaultLangID
GetProcAddress
GetThreadPriority
GlobalDeleteAtom
GlobalFindAtomA
GlobalGetAtomNameW
GlobalUnfix
HeapAlloc
HeapCompact
IsValidLocale
LeaveCriticalSection
LoadLibraryW
LocalFlags
OpenMutexA
OpenProcess
PeekConsoleInputW
PeekNamedPipe
Process32First
PurgeComm
ReadConsoleInputA
ReadConsoleOutputW
ReadConsoleW
ReleaseMutex
ScrollConsoleScreenBufferA
SearchPathW
SetConsoleCtrlHandler
SetConsoleDisplayMode
SetCurrentDirectoryA
SetDefaultCommConfigW
SetEnvironmentVariableA
SetEvent
SetFileApisToOEM
SetHandleCount
SetInformationJobObject
SetMailslotInfo
SetMessageWaitingIndicator
SetSystemPowerState
SetTimerQueueTimer
TerminateThread
TlsSetValue
TransmitCommChar
TryEnterCriticalSection
VerLanguageNameA
VerLanguageNameW
VirtualProtectEx
WideCharToMultiByte
WriteFile
WriteProfileStringA
_hread
GetSystemTime
ExitProcess

user32

AppendMenuW
ArrangeIconicWindows
CharToOemW
CharUpperA
CloseDesktop
CreateDesktopA
CreateDesktopW
CreateDialogParamA
CreateIconIndirect
CreateWindowStationA
DdeConnect
DdeDisconnect
DdeDisconnectList
DefDlgProcW
DeleteMenu
DeregisterShellHookWindow
DestroyMenu
DrawCaption
DrawStateW
EditWndProc
EndDialog
EndMenu
EndPaint
EnumDisplaySettingsW
FindWindowA
GetClassLongA
GetClassNameW
GetClassWord
GetCursorInfo
GetDlgItem
GetForegroundWindow
GetMenu
GetMenuBarInfo
GetMenuCheckMarkDimensions
GetMenuItemRect
GetParent
GetPriorityClipboardFormat
GetProcessWindowStation
GetThreadDesktop
GetTitleBarInfo
GetWindowContextHelpId
GetWindowInfo
GetWindowLongA
GetWindowModuleFileNameW
GetWindowRect
GetWindowTextLengthW
HiliteMenuItem
IMPGetIMEW
ImpersonateDdeClientWindow
InsertMenuW
InternalGetWindowText
InvalidateRgn
IsCharLowerW
IsCharUpperA
IsClipboardFormatAvailable
IsDialogMessageA
IsDlgButtonChecked
LoadImageA
LoadMenuA
LoadMenuW
LookupIconIdFromDirectoryEx
MapVirtualKeyExA
MessageBeep
MessageBoxIndirectA
NotifyWinEvent
OffsetRect
OpenDesktopA
OpenDesktopW
OpenWindowStationA
PostThreadMessageA
RegisterClipboardFormatW
ReleaseCapture
RemoveMenu
ReplyMessage
SetCaretPos
SetDeskWallpaper
SetFocus
SetScrollInfo
SetWindowsHookExW
ShowScrollBar
SubtractRect
SystemParametersInfoA
TabbedTextOutA
TranslateMDISysAccel
keybd_event
AdjustWindowRect
AnyPopup

gdi32

GetStockObject

ole32

CLIPFORMAT_UserFree
CLSIDFromProgID
CLSIDFromProgIDEx
CoCopyProxy
CoCreateFreeThreadedMarshaler
CoCreateInstanceEx
CoCreateObjectInContext
CoDisconnectObject
CoFileTimeToDosDateTime
CoFreeAllLibraries
CoFreeLibrary
CoGetCallerTID
CoGetInstanceFromFile
CoGetInstanceFromIStorage
CoGetMarshalSizeMax
CoGetObject
CoGetPSClsid
CoGetStdMarshalEx
CoLoadLibrary
CoQueryProxyBlanket
CoRegisterClassObject
CoReleaseServerProcess
CoRevokeMallocSpy
CoSetProxyBlanket
CoTreatAsClass
CoWaitForMultipleHandles
CreateAntiMoniker
CreateGenericComposite
CreateStdProgressIndicator
DcomChannelSetHResult
DllGetClassObjectWOW
FreePropVariantArray
GetConvertStg
GetHGlobalFromStream
HACCEL_UserFree
HACCEL_UserUnmarshal
HBITMAP_UserUnmarshal
HDC_UserMarshal
HDC_UserSize
HGLOBAL_UserFree
HGLOBAL_UserSize
HGLOBAL_UserUnmarshal
HMENU_UserFree
HMENU_UserUnmarshal
HMETAFILEPICT_UserMarshal
HMETAFILE_UserUnmarshal
HPALETTE_UserFree
HkOleRegisterObject
MkParseDisplayName
MonikerRelativePathTo
OleCreateFromData
OleCreateFromFileEx
OleCreateLink
OleDestroyMenuDescriptor
OleDraw
OleFlushClipboard
OleGetAutoConvert
OleGetIconOfClass
OleInitialize
OleIsCurrentClipboard
OleIsRunning
OleLoad
OleRegGetUserType
OleSaveToStream
OleSetMenuDescriptor
PropStgNameToFmtId
ReadOleStg
SNB_UserFree
STGMEDIUM_UserFree
STGMEDIUM_UserSize
SetConvertStg
StgConvertPropertyToVariant
StgConvertVariantToProperty
StgCreateStorageEx
StgOpenAsyncDocfileOnIFillLockBytes
StgPropertyLengthAsVariant
StringFromGUID2
UpdateDCOMSettings
UtGetDvtd16Info
UtGetDvtd32Info
WdtpInterfacePointer_UserMarshal
WdtpInterfacePointer_UserUnmarshal
WriteClassStg
WriteClassStm
WriteOleStg

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sag3
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nnn
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd3b7294d44ad9b6826ab2a731a36966

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.text Size: 9KB - Virtual size: 8KB

.sag3 Size: 512B - Virtual size: 4B

.nnn Size: 175KB - Virtual size: 175KB

.data Size: 512B - Virtual size: 136B

.rsrc Size: 13KB - Virtual size: 12KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 8KB

.sag3
Size: 512B - Virtual size: 4B

.nnn
Size: 175KB - Virtual size: 175KB

.data
Size: 512B - Virtual size: 136B

.rsrc
Size: 13KB - Virtual size: 12KB

.reloc
Size: 2KB - Virtual size: 1KB