VirusShare_3bb81a9396c843d4bfe3de79e3a94a88

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_3bb81a9396c843d4bfe3de79e3a94a88
Size

354KB
MD5

3bb81a9396c843d4bfe3de79e3a94a88
SHA1

e61f2d2fefde9432dbb254f737a03cb24f4f94b8
SHA256

dc48ca70c9bb1f434005b55f929f10a5ddf3a3edff6d7e3064d240409dadb861
SHA512

06b99e1385a17a71777858cfd9d12ee5964414bac5e44ec760924b9ca707323a8bf739376662e38ec58ebe5aecce07de8384f4cf9a28a21ad36f2a6edc7ac5bf
SSDEEP

6144:qOSWb+cCxUehUbJrzRJeSe2Eef/MSANwE46CLw0Baccl/utGCJb:/hC22UbZzRJb5EskSgdlwQcS4x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_3bb81a9396c843d4bfe3de79e3a94a88

Files

VirusShare_3bb81a9396c843d4bfe3de79e3a94a88
.exe windows:4 windows x86 arch:x86

48bf2f810ae83af970ce6aa316890c4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomW
HeapReAlloc
GetEnvironmentStringsW
GetFileAttributesA
FindNextFileW
DeleteFileA
GetModuleHandleA
GetStartupInfoA

user32

GetWindowTextLengthA
ExcludeUpdateRgn
DialogBoxIndirectParamW
AppendMenuW
ShowOwnedPopups
GetWindowModuleFileNameW
SendNotifyMessageA
UpdateWindow
IsWindowUnicode
GetKeyboardType
DrawStateW
GetClassNameW
GetMenuItemRect
CloseWindowStation
CopyAcceleratorTableA
MsgWaitForMultipleObjects
CreateAcceleratorTableA
GetClassLongA
CreateDialogParamA
CharToOemA
IsZoomed
PostThreadMessageA
DrawEdge
IsDialogMessageA
GetLastActivePopup
GetDCEx
GetCursorPos
ChildWindowFromPointEx
SetPropA
WinHelpA
ChildWindowFromPoint
SetClassLongW
DefFrameProcA
SetDoubleClickTime
GetKeyState
InsertMenuW
SystemParametersInfoW
MessageBeep
DefMDIChildProcA
TileWindows
DispatchMessageA
EnableScrollBar
EmptyClipboard
IsWindowVisible
SetPropW
GetMenuContextHelpId
DdeAccessData
GetKeyNameTextA
InvalidateRgn
SetWindowPos
SetSysColors
DrawStateA
MapDialogRect
CreateIconIndirect
SetMenuDefaultItem
SendDlgItemMessageW
ChangeDisplaySettingsExA
DefMDIChildProcW
SetScrollPos
GetUserObjectSecurity
SetWinEventHook
CharPrevW
DdeQueryNextServer
LoadCursorFromFileA
SetWindowsHookA
SendMessageCallbackA
GetKeyboardLayout
GetMessageW
GetSystemMetrics
ValidateRect
EndDialog
CharToOemBuffW
PeekMessageW
GetKeyboardState
CharNextExA
DlgDirListA
GetProcessWindowStation
GetDesktopWindow
SendNotifyMessageW
GetWindowModuleFileNameA
DeleteMenu
SetCursor
EndDeferWindowPos
CharUpperW
SetRect
MapVirtualKeyExA
DlgDirListW
DefWindowProcA
ActivateKeyboardLayout
GetMenuItemID
LockWindowUpdate
VkKeyScanA
MessageBoxIndirectW
SendMessageW
UnhookWindowsHookEx
GetGUIThreadInfo
ChangeMenuA
GetActiveWindow
OpenDesktopW
GetWindowTextW
MoveWindow
OpenInputDesktop
DdeEnableCallback
CallWindowProcA
GetClipboardData
PeekMessageA
DestroyWindow
FindWindowExW
CreateDesktopA
TranslateAcceleratorW
EnumWindowStationsW
WaitForInputIdle
SendMessageTimeoutA
EnumDisplaySettingsW
UnloadKeyboardLayout
CallNextHookEx
CreateDialogParamW
GetMenu
MessageBoxW
InsertMenuA
LoadIconA
VkKeyScanW
DrawFrameControl
GetWindowLongA
CharPrevA
CreateCursor
PaintDesktop
CreateMDIWindowW
GetClassNameA
LoadImageW
ShowWindow
LoadKeyboardLayoutW
DestroyCursor
UnpackDDElParam
SetDlgItemTextA
LoadStringA
DefDlgProcA
DrawTextW
VkKeyScanExA
DrawAnimatedRects
IsWindow
ShowScrollBar
DdeClientTransaction
SetWindowRgn
GetMessageTime
DdeCreateDataHandle
IsWindowEnabled
GetWindowWord
DestroyCaret
LoadBitmapW
SetClassWord
NotifyWinEvent
BringWindowToTop
CloseDesktop
DdeKeepStringHandle
UnhookWinEvent
PostThreadMessageW
GetWindowDC
GetSubMenu
PostQuitMessage
DialogBoxParamA
DrawIconEx
WindowFromPoint
GetIconInfo
IsMenu
CharLowerBuffW
DdeCreateStringHandleA
DrawMenuBar
IsChild
GetUpdateRgn
ScreenToClient
DrawIcon
GetMenuCheckMarkDimensions
RegisterClassExA
DdePostAdvise
FrameRect
GetTopWindow
SystemParametersInfoA
SetLastErrorEx
InvertRect
GetMenuItemInfoW
GetWindowRect
GetClassWord
CharLowerA
TranslateMessage
LoadKeyboardLayoutA
MapWindowPoints
CallMsgFilterA
CreateWindowExW
DrawFocusRect
LoadBitmapA
SetTimer
MenuItemFromPoint
IsRectEmpty
ImpersonateDdeClientWindow
SwapMouseButton
PostMessageA
MessageBoxIndirectA
SetDlgItemTextW
MapVirtualKeyA
DdeCmpStringHandles
AppendMenuA
GetMenuStringW
EnableWindow
EnumPropsExW
DefWindowProcW
LookupIconIdFromDirectoryEx
IsCharLowerA
UnregisterHotKey
ModifyMenuW
LoadMenuA
GetDlgCtrlID
VkKeyScanExW
GetMessageA
DdeInitializeA
ReleaseDC
InsertMenuItemW
LoadAcceleratorsA
OemKeyScan
ScrollDC
DdeGetData
AttachThreadInput
GetThreadDesktop
CharLowerBuffA
GetClipboardFormatNameW
CreateWindowStationW
PtInRect
RemovePropA
EnumDisplaySettingsA
SetForegroundWindow
ToUnicodeEx
GetWindowTextLengthW
GetDlgItemInt
SetSystemCursor
GetCaretPos
SetWindowPlacement
GetMessageExtraInfo
SetWindowTextA
TrackPopupMenuEx
RegisterClassExW
ArrangeIconicWindows

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_eof

advapi32

MakeAbsoluteSD
ReportEventW
LsaLookupNames
BuildImpersonateTrusteeA
NotifyBootConfigStatus
InitializeSecurityDescriptor
LockServiceDatabase
LookupAccountNameW
GetTrusteeFormA
LookupPrivilegeNameW
LsaOpenPolicy
RegOpenKeyExA
ObjectOpenAuditAlarmW
RegSetValueW
SetKernelObjectSecurity
GetSecurityDescriptorGroup
GetFileSecurityW
LogonUserW
RegLoadKeyW
LsaQueryTrustedDomainInfo
IsValidAcl
ReadEventLogW
LsaEnumerateAccountRights
AddAuditAccessAce
SetFileSecurityW
GetNamedSecurityInfoW
GetAclInformation
RegDeleteValueA
GetAuditedPermissionsFromAclW
GetLengthSid
LookupPrivilegeDisplayNameW
GetServiceDisplayNameW
QueryServiceStatus
ObjectPrivilegeAuditAlarmA
ControlService
EqualSid
QueryServiceConfig2A
LsaCreateTrustedDomainEx
RegQueryValueExA
RegUnLoadKeyW
RegQueryInfoKeyW
GetFileSecurityA
RegOpenKeyExW
EqualPrefixSid
QueryServiceLockStatusA
RegReplaceKeyA
GetExplicitEntriesFromAclW
CreateServiceA
LsaNtStatusToWinError
AddAce
RegCreateKeyExW
RegOpenKeyW
RegDeleteValueW
SetNamedSecurityInfoW

Sections

.text
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48bf2f810ae83af970ce6aa316890c4f

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

Sections

.text Size: 120KB - Virtual size: 117KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 4.8MB

.rsrc Size: 36KB - Virtual size: 32KB

.text
Size: 120KB - Virtual size: 117KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 4.8MB

.rsrc
Size: 36KB - Virtual size: 32KB