VirusShare_fae739b9544c6b6d8e69d2adea8a6035 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_fae739b9544c6b6d8e69d2adea8a6035
Size

140KB
MD5

fae739b9544c6b6d8e69d2adea8a6035
SHA1

6469340acf32c4ee1beb426f8688a5282fadbc3b
SHA256

a73dd563f023e344d20c202e3c1c402823b14b4639f1e17abb4038e534369dcd
SHA512

4132b4245165e9255a9631086a3dc8ceb8c014eebdbcb73dc0c311972bfe94474a1b513a72aa10750dadef880db0cb4c941caf61c3487b405634bee6ba854a5c
SSDEEP

1536:6tI6BURkypfYyfBEU62l5dwVMANCnAe3aUKpY81FBhwg9GeLcxZ1P8LrLMIH:MRBJ+Y8u0vwVj6AedKXFkgJLcCHTH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusShare_fae739b9544c6b6d8e69d2adea8a6035

Files

VirusShare_fae739b9544c6b6d8e69d2adea8a6035
.dll windows:4 windows x86 arch:x86

391f77d2a755d0d4e2fa829ff5902439

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

nidafol.pdb

Imports

user32

CheckRadioButton
CloseWindow
PtInRect
LoadImageA
OffsetRect
CheckDlgButton
OpenIcon
MoveWindow
CascadeWindows
AnimateWindow
DrawIconEx
GetActiveWindow
InsertMenuA
CloseClipboard
OpenClipboard
GetClipboardOwner
ChangeMenuA
SetMenu
GetWindowInfo

advapi32

CryptDestroyHash
CryptGenRandom

Exports

Exports

iujyKZPJW

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT2
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.INIT
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ