VirusShare_7941708f058beca69eaf0f9d7618d020

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_7941708f058beca69eaf0f9d7618d020
Size

326KB
MD5

7941708f058beca69eaf0f9d7618d020
SHA1

0be04012482c6df1410db047523524e6b8aa9b8a
SHA256

810e130cd7bc7a1c7402eaec1f002b81709783cc3a5baf3d459bf2fdd39db173
SHA512

d81b5e8717b126fe65e94d1df3e3fcae7ae75f517935cb3989c9481730d980cd738e2dd348971e3172074d8f6df60f89bb7b1751579ca35fb3432c3ade3cb6af
SSDEEP

6144:LtA18fBBHyY0PGdy0Ztzpk6pH61YkGy9Bjct:5A18fBIY0PGdy07xfw9Bj4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_7941708f058beca69eaf0f9d7618d020

Files

VirusShare_7941708f058beca69eaf0f9d7618d020
.exe windows:4 windows x86 arch:x86

3d8af82a4e3fd5d1a6cfc9ff447b767b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

OpenSCManagerW
LsaSetTrustedDomainInfoByName
RegEnumValueW
EqualSid
RegUnLoadKeyW
AddAccessAllowedAce
RegSetValueExW
RegDeleteValueA
RegOpenKeyA
AccessCheckAndAuditAlarmA
CreatePrivateObjectSecurity
LsaClose
GetSidIdentifierAuthority
GetSecurityDescriptorSacl
RegQueryValueW
BuildTrusteeWithNameA
LsaEnumerateAccountRights
GetTrusteeFormA
ObjectCloseAuditAlarmA
GetSidSubAuthority
RegRestoreKeyW
GetSecurityDescriptorLength
RegQueryValueExA
RegReplaceKeyA
QueryServiceStatus
ReportEventW
CloseServiceHandle
CreateProcessAsUserA
RegGetKeySecurity
StartServiceCtrlDispatcherW
AddAce
RegSetValueExA
OpenServiceW
CreateServiceA
RegOpenKeyExW
OpenServiceA
SetPrivateObjectSecurity
EnumServicesStatusA
MakeAbsoluteSD
LookupPrivilegeDisplayNameW
LockServiceDatabase
SetEntriesInAclW
GetSecurityDescriptorDacl
RegCloseKey
NotifyChangeEventLog
DecryptFileW
LsaEnumerateAccountsWithUserRight
RegOpenKeyW
SetThreadToken
RegQueryValueA
SetSecurityDescriptorSacl
AreAnyAccessesGranted
FreeSid
LsaDeleteTrustedDomain
RegQueryMultipleValuesA
SetServiceStatus
BuildTrusteeWithNameW
PrivilegedServiceAuditAlarmW
RegCreateKeyExW
LsaRetrievePrivateData
RegReplaceKeyW
IsValidSid
RegCreateKeyExA
LsaEnumerateTrustedDomains
SetFileSecurityW
GetSidSubAuthorityCount
SetTokenInformation
DuplicateTokenEx
AdjustTokenPrivileges
QueryServiceLockStatusW
RegOverridePredefKey
IsTokenRestricted
GetSecurityDescriptorOwner
RegCreateKeyA
EqualPrefixSid
SetNamedSecurityInfoW
StartServiceA
DeleteService
GetLengthSid
ImpersonateSelf
SetEntriesInAclA
RegUnLoadKeyA
LsaQueryInformationPolicy
BuildTrusteeWithSidA
LsaCreateTrustedDomainEx
MakeSelfRelativeSD
QueryServiceConfig2W
ReadEventLogA
RegLoadKeyW
InitiateSystemShutdownW
LogonUserW
GetSecurityDescriptorControl
RegQueryInfoKeyW
ObjectDeleteAuditAlarmW
LsaAddAccountRights
RegNotifyChangeKeyValue
GetFileSecurityW
EnumDependentServicesW
RegCreateKeyW
GetNamedSecurityInfoA
RegOpenKeyExA
RegisterEventSourceA
LookupPrivilegeValueA
GetNumberOfEventLogRecords
QueryServiceConfig2A
ReadEventLogW
OpenBackupEventLogA
LookupPrivilegeNameW
GetSecurityDescriptorGroup
AbortSystemShutdownW
GetServiceKeyNameA
IsValidAcl
LogonUserA
RegSetKeySecurity
QueryServiceObjectSecurity
RegDeleteValueW
GetSidLengthRequired
CreateRestrictedToken
LsaQueryTrustedDomainInfoByName
LsaSetInformationPolicy
GetAce
ObjectCloseAuditAlarmW
ControlService
SetSecurityDescriptorOwner
GetServiceDisplayNameW
BackupEventLogW
ObjectOpenAuditAlarmW
LookupAccountNameW
InitializeSecurityDescriptor
SetNamedSecurityInfoA
OpenProcessToken
RegQueryValueExW

user32

SetDoubleClickTime
SetCursor
DdeKeepStringHandle
AppendMenuW
SetScrollPos
EmptyClipboard
SetDlgItemInt
GetUpdateRect
SetWindowsHookA
LoadMenuIndirectW
DrawTextExA
SetWindowRgn
GetCaretBlinkTime
SystemParametersInfoA
EndDeferWindowPos
LoadCursorA
CharToOemBuffW
GetForegroundWindow
CharLowerBuffA
GetNextDlgTabItem
ChildWindowFromPoint
GetWindowLongA
CloseDesktop
DestroyCaret
LookupIconIdFromDirectoryEx
LoadCursorFromFileA
ModifyMenuW
IsZoomed
OpenClipboard
ArrangeIconicWindows
CheckMenuItem
DdeGetLastError
WINNLSEnableIME
SetSysColors
GetWindowRect
DdeCmpStringHandles
DeleteMenu
EqualRect
GrayStringA
LoadBitmapA
CreateIconIndirect
PaintDesktop
InSendMessage
InsertMenuItemW
CharToOemA
GetWindow
GetMenuStringA
DlgDirSelectComboBoxExA
GetProcessWindowStation
CallWindowProcA
LoadStringW
PeekMessageA
EndDialog
IsRectEmpty
DrawMenuBar
ShowOwnedPopups
InvertRect
CreateAcceleratorTableA
RemoveMenu
DrawFrameControl
VkKeyScanA
MessageBoxExA
ChangeMenuA
DdeConnect
ScreenToClient
GetGUIThreadInfo
GetDialogBaseUnits
SendNotifyMessageA
GetKeyboardState
SetWindowsHookExW
IsChild
GetDesktopWindow
SetCapture
DispatchMessageW
DdeQueryStringA
MapWindowPoints
GetMenuStringW
TileWindows
LoadImageA
ScrollDC
CharNextExA
DrawTextA
SetLastErrorEx
GetNextDlgGroupItem
CharPrevA
IsIconic
DrawFocusRect
SetMenuItemInfoA
SetMenuContextHelpId
BringWindowToTop
GetFocus
GetClassNameW
GetCapture
InvalidateRect
HideCaret
GetUpdateRgn
GetWindowTextW
CharLowerBuffW
CharNextA
SetParent
GetKeyState
GetMenuState
DrawStateA
LockWindowUpdate
MsgWaitForMultipleObjectsEx
DdeUnaccessData
SetClassLongW
OpenDesktopW
SwitchDesktop
GetMessageW
ShowCaret
GetWindowLongW
GetSubMenu
PostQuitMessage
ImpersonateDdeClientWindow
DefDlgProcW
GetWindowTextA
SetTimer
GetClassInfoExA
LoadMenuW
RemovePropA
GetCursor
SendNotifyMessageW
wvsprintfA
GetKeyboardLayoutNameA
CreateDialogParamW
ToAscii
CharLowerW
CloseClipboard
GetClassLongA
FindWindowA
GetMessageTime
EnumDisplaySettingsA
CreateIconFromResourceEx
DialogBoxParamA
FrameRect
SetClipboardViewer
SetMenuItemBitmaps
WaitForInputIdle
CopyAcceleratorTableA
SetCaretBlinkTime
LoadIconW
DeferWindowPos
LoadKeyboardLayoutW
GetScrollPos
ValidateRect
MenuItemFromPoint
GetWindowModuleFileNameA
SetScrollInfo
GetIconInfo
GetActiveWindow
GetWindowTextLengthW
RedrawWindow
LoadStringA
ClientToScreen
GetDlgCtrlID
CallMsgFilterA
SetDlgItemTextA
LoadBitmapW
EnableMenuItem
CloseWindow
SendDlgItemMessageW
GetLastActivePopup
DestroyIcon
ChangeClipboardChain
MessageBeep
DdeInitializeA
DefMDIChildProcA
DrawIconEx
CreateIconFromResource
EnumPropsExW
PostThreadMessageW
DrawIcon
GetKeyNameTextA
ChangeDisplaySettingsExA
LoadKeyboardLayoutA
IsDialogMessageA
WindowFromPoint
ChildWindowFromPointEx
GetDlgItemTextA
DdeCreateDataHandle
SetUserObjectSecurity
GetMenuContextHelpId
LoadAcceleratorsA
EnumDisplaySettingsW
SetWindowPlacement
GetKeyboardLayout
GetClipboardData
MessageBoxIndirectW
TranslateMDISysAccel
GetWindowWord
MessageBoxIndirectA
SetForegroundWindow
LoadIconA
SubtractRect
CreateDialogIndirectParamA
OemToCharA
SetDlgItemTextW
GetInputState
ReleaseDC
DdeQueryNextServer
DdeUninitialize
IsCharAlphaNumericA
ExcludeUpdateRgn
CountClipboardFormats
GetMessagePos
UnhookWinEvent
GetQueueStatus
ShowCursor
IsWindowVisible
KillTimer
CharToOemW
EnumPropsExA
RegisterClipboardFormatW
GetMenuDefaultItem
UnregisterHotKey
GetDlgItemInt
CloseWindowStation
SetMessageQueue
GetCursorPos
CharPrevW
EnumWindowStationsW
wvsprintfW
DdeCreateStringHandleA
TranslateAcceleratorW
LoadMenuA
ShowScrollBar
MapVirtualKeyA
DefWindowProcA
GetMessageExtraInfo
CreateWindowExW
DrawStateW
SendMessageCallbackA
GetClassWord
PeekMessageW
UnregisterClassA
InsertMenuW
NotifyWinEvent
GetKeyboardType
RegisterClassExA
LoadCursorW
SetWindowLongA
FlashWindow
SwapMouseButton
CallNextHookEx
OemToCharBuffA

kernel32

GetModuleHandleA
GetCommandLineA
CreateDirectoryA
DisconnectNamedPipe
DeleteFileA
GetStartupInfoA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_eof

winmm

mciGetErrorStringA

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d8af82a4e3fd5d1a6cfc9ff447b767b

Headers

File Characteristics

Imports

advapi32

user32

kernel32

msvcrt

winmm

Sections

.text Size: 112KB - Virtual size: 109KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 1.1MB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 112KB - Virtual size: 109KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 1.1MB

.rsrc
Size: 16KB - Virtual size: 13KB