VirusShare_4affa384ff6ab351df42fc3a02716670 | Triage

Sharing

General

Target

VirusShare_4affa384ff6ab351df42fc3a02716670
Size

364KB
MD5

4affa384ff6ab351df42fc3a02716670
SHA1

7bebae1ad50fd27c3df625dc3995256f7d8bb8c2
SHA256

4f1e783f68071d95e0b07e1f8b80ed49d0d94a089ae96016b197f846350cfe66
SHA512

802616cac860ed2facd74387475e45ecd5a9e00fb106db801cd0168659fcecb9bb0ca6afb4cfeeca592d24d20c07add685e9a65c3178c839d37850a324906070
SSDEEP

6144:rHDYm7R++Qhm/FxsB+lIB+0ODLawCi308Ki7B4iTK24D1sr:rHr2mwB+g03S5idVK24Zsr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_4affa384ff6ab351df42fc3a02716670

Files

VirusShare_4affa384ff6ab351df42fc3a02716670
.exe windows:4 windows x86 arch:x86

13e7fc8fa3c16744719dfaedaf55d045

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetDIBColorTable
GetRgnBox
CreateDIBPatternBrushPt
ExtCreatePen
CreateDCW

user32

TranslateAcceleratorW
SetWindowPlacement
PtInRect
LockWindowUpdate
OemToCharBuffA
TranslateAcceleratorA
SetMenu
RegisterClipboardFormatA
LoadImageA
SetRectEmpty
SetRect
IsChild
IsWindow
SetTimer
SetWindowPos
IsCharLowerA
LoadKeyboardLayoutW
MoveWindow
SetClipboardData
ShowWindow
IsDlgButtonChecked
IsWindowEnabled
IsZoomed

imagehlp

ImagehlpApiVersionEx
SymGetModuleInfo
SymLoadModule
MapFileAndCheckSumW
SymSetOptions
SymGetOptions
ImageGetCertificateData
MakeSureDirectoryPathExists
SymSetSearchPath
EnumerateLoadedModules
StackWalk
ImageNtHeader
SymCleanup
FindExecutableImage
SymGetSearchPath

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 487KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ