VirusShare_2f6e31ea10e7493640f587fbddf1e295

Sharing

Copy URL

Twitter E-mail

General

Target

VirusShare_2f6e31ea10e7493640f587fbddf1e295
Size

405KB
MD5

2f6e31ea10e7493640f587fbddf1e295
SHA1

093cc6e3b22d18407a4aa073ba2c56e9a93a7f0e
SHA256

10ac5ba8e263f415b53bae91278727eb71ec393b1f685bd6cdd6df48d984df9d
SHA512

a0d78f5947def8a397746fd5d63caf85628acdb252141a848e9e533712f2e1de10e8dc8054180a9065f1e2aeac7dc1be2710afba55166ae4ab90b90ba6994833
SSDEEP

12288:D9RdIMX3LWmMOF1zvk/3t+zS6dGf4HpnK:JIMXz/1zOHf4M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_2f6e31ea10e7493640f587fbddf1e295

Files

VirusShare_2f6e31ea10e7493640f587fbddf1e295
.exe windows:4 windows x86 arch:x86

963439fa5a514aac700275df4baf5efa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

DuplicateTokenEx
SetNamedSecurityInfoA
GetFileSecurityA
GetSecurityDescriptorLength
DuplicateToken
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner
IsValidSecurityDescriptor

msvcrt

_except_handler3
__p__fmode
__p__commode
_adjust_fdiv
__set_app_type
strpbrk
_onexit
__setusermatherr
_initterm
__getmainargs
_CIcos
__dllonexit
_controlfp
_itow
difftime
exit
_acmdln

gdi32

GetKerningPairsA
UpdateColors
SetTextCharacterExtra
PtVisible
GetWindowOrgEx
GetDIBits
GetNearestPaletteIndex
CreateFontA
SetBkMode
CreateCompatibleBitmap
DeleteObject
CreateICA
SetMapMode
SetTextAlign
GetObjectW
GetTextCharsetInfo
SetWindowExtEx
SaveDC
SetWinMetaFileBits
ScaleViewportExtEx
SetStretchBltMode
CreateBitmap
SetAbortProc
SetDIBColorTable
GetTextExtentPoint32W
CreateDIBSection
CreatePenIndirect
Arc
RectVisible
GetClipRgn
MoveToEx
StartDocA
EndDoc
CombineRgn
GdiFlush
ExtEscape
UnrealizeObject

user32

InSendMessage
SetUserObjectSecurity

mpr

WNetAddConnection2A

version

VerQueryValueW
VerFindFileA
VerInstallFileA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerInstallFileW
GetFileVersionInfoSizeA

kernel32

GetModuleHandleA
GetStringTypeA
GetLogicalDrives
CreateDirectoryW
GetStartupInfoA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 542KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

963439fa5a514aac700275df4baf5efa

Headers

File Characteristics

Imports

advapi32

msvcrt

gdi32

user32

mpr

version

kernel32

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 12KB - Virtual size: 542KB

.rsrc Size: 76KB - Virtual size: 73KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 12KB - Virtual size: 542KB

.rsrc
Size: 76KB - Virtual size: 73KB