VirusShare_d636bfdfd17632705ac80cc54923f50c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_d636bfdfd17632705ac80cc54923f50c
Size

142KB
MD5

d636bfdfd17632705ac80cc54923f50c
SHA1

5196a4da27e96896fe3e5c6830052938c78f3a90
SHA256

b2b31d8a8a071afd2dd3918e307496e2d550199f63ec8a01dbba6af44e2afa30
SHA512

2ea87b85ba3715d91f1af142b9922fefc4dfac96730051825f1bb317cc12aa07f6940404176669ff993c462bf6afcbd087a579067ef11c7741728317bba6a287
SSDEEP

1536:6NiHAhx98OhpqgHVor1nfXwzIq8T1x/+SjtSI/3E4ROAXL/+2ukj22Wckhq4b3Si:qt17zVAA0yIn/3Eru+XiZWnhdNrig

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_d636bfdfd17632705ac80cc54923f50c

Files

VirusShare_d636bfdfd17632705ac80cc54923f50c
.dll windows:4 windows x86 arch:x86

391f77d2a755d0d4e2fa829ff5902439

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

nidafol.pdb

Imports

user32

CheckRadioButton
CloseWindow
PtInRect
LoadImageA
OffsetRect
CheckDlgButton
OpenIcon
MoveWindow
CascadeWindows
AnimateWindow
DrawIconEx
GetActiveWindow
InsertMenuA
CloseClipboard
OpenClipboard
GetClipboardOwner
ChangeMenuA
SetMenu
GetWindowInfo

advapi32

CryptDestroyHash
CryptGenRandom

Exports

Exports

PeayaiqJy

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT2
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.INIT
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ