VirusShare_6e75b65401c1d9b1d4d618185039337d

General

Target

VirusShare_6e75b65401c1d9b1d4d618185039337d
Size

140KB
MD5

6e75b65401c1d9b1d4d618185039337d
SHA1

6ee212b0f6dd5fbedcb6b48dfd85fdc40f3b59a3
SHA256

a1eb3d2cd241fbfbebd12180691371ad3df04e3aa7cacdf63d6107b8edb85f4b
SHA512

3a6acb3cb965dae9f65724c3626f4c62d25f120b285abe58d32780a4db52f8296a902b41c48a20e649d8d0c13685ace57abf2c637f099157bfbe84b6f72c3be2
SSDEEP

1536:E1PK2w47MkEmGuwWIjkPbmtaAEUydLOqMdhvGm+l7bB80+lL:EBIkgAbmkUydsd0l7bB80a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_6e75b65401c1d9b1d4d618185039337d

Files

VirusShare_6e75b65401c1d9b1d4d618185039337d
.exe windows:4 windows x86 arch:x86

a3dbd2c94b365526bb21c65ad787121f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\temp\al.dbg

Imports

kernel32

VirtualAlloc
GetTickCount
LoadLibraryA
PulseEvent
GetModuleHandleA
TerminateThread
DeleteFileW
CloseHandle
WriteFile
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetProcAddress
TerminateProcess
ResumeThread
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
HeapSize
Sleep
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
GetCurrentProcess
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetACP
GetOEMCP
GetCPInfo
HeapAlloc
HeapReAlloc
RaiseException
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
VirtualQuery

user32

LoadImageA
LoadCursorW

gdi32

CreateCompatibleBitmap
CreatePen

ole32

CoCreateInstance

oleaut32

VariantInit

winmm

midiInClose

avifil32

AVIMakeStreamFromClipboard

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3dbd2c94b365526bb21c65ad787121f

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

ole32

oleaut32

winmm

avifil32

Sections

.text Size: 44KB - Virtual size: 42KB

.data Size: 80KB - Virtual size: 79KB

.tls Size: 4KB - Virtual size: 264B

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 44KB - Virtual size: 42KB

.data
Size: 80KB - Virtual size: 79KB

.tls
Size: 4KB - Virtual size: 264B

.rsrc
Size: 8KB - Virtual size: 7KB