VirusShare_0cacc29aa8447b7ede122bd97b33b630 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_0cacc29aa8447b7ede122bd97b33b630
Size

143KB
MD5

0cacc29aa8447b7ede122bd97b33b630
SHA1

1201aad293eaf989cfe5f6f7710182d31e4462b2
SHA256

14899d14db22fe02963836ac901f3c8efdc25ecb6b16c46c1ea5fe5811ea0e60
SHA512

67c233bbee33faa7473250b9b32d62b0d125fcdd6497ace49d87d343f064e417d6045292713fa8a3692d26ea5732c4586ce0ed41b493a8fed64c3425d65d5a00
SSDEEP

3072:SbQQeQQQQQQQQQQQQeQQQQQQQfGQQQQQQQQQQeQQQQQQQQIbdgu64eJk9EtUJtky:ggPJLejkrpq/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_0cacc29aa8447b7ede122bd97b33b630

Files

VirusShare_0cacc29aa8447b7ede122bd97b33b630
.dll windows:5 windows x86 arch:x86

98d55befd13451a60b6adb99171fa4a1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
FreeLibrary
GetFileAttributesA
GetLastError
GetModuleHandleA
GetProcAddress
GetVersionExA
CreateMutexA
ReleaseMutex
UnhandledExceptionFilter
WaitForSingleObject
lstrlenW
VirtualAllocEx
GetStartupInfoA
LoadLibraryA
CloseHandle

user32

GetWindowThreadProcessId
LoadIconA
LoadCursorW
SetForegroundWindow
SendMessageTimeoutA
LoadStringA
MessageBoxA

advapi32

RegOpenKeyExA

shlwapi

StrCmpIW
SHSetValueA
SHGetValueA
PathRemoveFileSpecA
StrStrIA

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ