Static task
static1
Behavioral task
behavioral1
Sample
VirusShare_09e28e9a94fee8af07007497677976fc.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
VirusShare_09e28e9a94fee8af07007497677976fc.exe
Resource
win10v2004-20240426-en
General
-
Target
VirusShare_09e28e9a94fee8af07007497677976fc
-
Size
327KB
-
MD5
09e28e9a94fee8af07007497677976fc
-
SHA1
383a448b39b3eb8917cf36661996ca2c933ae53e
-
SHA256
8d1386773be9c28c6b3a5b5aa6838cf575189cedf17544105b95500c156b8f7e
-
SHA512
a7a705bfa8cec58de945e86e82f2dcdb658b8f0b1d8aa606caf35e1d6860e2d3ea890c6d974dd8c692ae260d1d342f2ff875880a04f247290089c477cc9d4c02
-
SSDEEP
6144:UpLp0syTnvooi3umGCJ1aynXgtGF0bo8ZZma/PC4yUYS5xCKszrQZ9:UpLesyNiVRJ1a6Xgtf3ZFPRY1zrU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource VirusShare_09e28e9a94fee8af07007497677976fc
Files
-
VirusShare_09e28e9a94fee8af07007497677976fc.exe windows:5 windows x86 arch:x86
b2725ee6f3c0b2d9ed55707a06cbdd3c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetConsoleDisplayMode
AddVectoredExceptionHandler
MapViewOfFile
CreateTimerQueueTimer
GetDefaultCommConfigA
VirtualProtect
VirtualQuery
GetModuleHandleA
GetDiskFreeSpaceA
msvcrt
memcpy
memset
Sections
.text Size: 278KB - Virtual size: 277KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 14KB - Virtual size: 287KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IDF Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ