VirusShare_1d2a93c764522f420e89a262c2190da0

General

Target

VirusShare_1d2a93c764522f420e89a262c2190da0
Size

168KB
MD5

1d2a93c764522f420e89a262c2190da0
SHA1

bcfad4e712151c26aa696d7378ea3261bd82a124
SHA256

56c02a1b6918ba705b20c91a69f943833cc9345069b970f6cf250d48e07103ec
SHA512

afe18a21bd557d6594cdd11ccbe291a3b80a2d22f76578570eef9014d664e220af08c318a0b147041db3d81c50ab893fd6fa706db113dff855d6f52a984794d5
SSDEEP

3072:Jbbr3z9nGM4uHy0ZnbeN++e8Hin9tUGIqITjsErZJz7InubC:JbzY+tnbPx8uPI758uG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_1d2a93c764522f420e89a262c2190da0

Files

VirusShare_1d2a93c764522f420e89a262c2190da0
.dll windows:4 windows x86 arch:x86

995cbc13c95282f51941f2f84cc3d8a7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetEnvironmentStrings
GetStdHandle
WriteFile
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetLastError
CreateMutexW
HeapAlloc
GetSystemInfo
LocalFree
FreeEnvironmentStringsW
RaiseException
HeapSize
DeviceIoControl
ReadFile
GetOverlappedResult
GlobalAddAtomW
GlobalDeleteAtom
ExpandEnvironmentStringsW
GetSystemTime
GetCurrentProcess
WideCharToMultiByte
GetEnvironmentStringsW
GetFileType
TlsGetValue
TlsSetValue
TlsFree
VirtualFree
HeapFree
GetCommandLineW
CompareStringW

user32

GetWindowThreadProcessId

advapi32

RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegCreateKeyW
RegEnumValueW
RegFlushKey
RegOpenKeyW
RegCreateKeyExW

Exports

Exports

EndRectToken
GetValue
LengthTextPosition

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xdata
Size: 4KB - Virtual size: 767B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2
Size: 4KB - Virtual size: 316B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

995cbc13c95282f51941f2f84cc3d8a7

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 28KB

.xdata Size: 4KB - Virtual size: 767B

.2 Size: 4KB - Virtual size: 316B

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 194KB

.rsrc Size: 40KB - Virtual size: 39KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 28KB

.xdata
Size: 4KB - Virtual size: 767B

.2
Size: 4KB - Virtual size: 316B

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 194KB

.rsrc
Size: 40KB - Virtual size: 39KB

.reloc
Size: 4KB - Virtual size: 1KB