| File Path | Type and Hashes |
|---|
| Match Rules |
|---|
| File Name: | virussign.com_0a6e28198c604d978ad822b65ce0f45c.vir |
| File Type: | PE32 executable (GUI) Intel 80386, for MS Windows |
| SHA1: | 721ede473dc5043a1dbc9d103a95b2f9bcc5298a |
| MD5: | 0a6e28198c604d978ad822b65ce0f45c |
| First Seen Date: | 2024-07-14 13:03:31.974260 ( ) |
| Number of Clients Seen: | 2 |
| Last Analysis Date: | 2024-07-14 13:04:53.512542 ( ) |
| Human Expert Analysis Date: | 2024-07-15 14:14:59.243782 ( ) |
| Human Expert Analysis Result: | Malware |
| Property | Value |
|---|---|
| magic literal enum | 3 |
| file type enum | 6 |
| debug artifacts | [] |
| number of sections | 3 |
| trid | [] |
| compilation time stamp | 0x5C432780 [Sat Jan 19 13:34:56 2019 UTC] |
| InternalName | Kawaii-Unicorn |
| FileVersion | 1.00 |
| CompanyName | UEFI |
| ProductName | Kawaii-Unicorn |
| ProductVersion | 1.00 |
| OriginalFilename | Kawaii-Unicorn.exe |
| Translation | 0x0804 0x04b0 |
| entry point | 0x4013d4 (.text) |
| machine type | Intel 386 or later - 32Bit |
| file size | 479555 |
| ssdeep | |
| sha256 | ecf88f88272a7aa024f8b24f185e222ea6b21bf772ab54eae7f074f9776b8572 |
| exifinfo | [] |
| mime type | application/x-dosexec |
| imphash |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | MD5 |
|---|---|---|---|---|---|
| .text | 0x1000 | 0x2a5c4 | 0x2b000 | 7.57096220209 | 329552b215433c0fcacdb59f040e7f72 |
| .data | 0x2c000 | 0xa20 | 0x1000 | 0.00984533685143 | 78b3a7243dede89de44755429cfb738f |
| .rsrc | 0x2d000 | 0x479f8 | 0x48000 | 2.45648445348 | 940a1e4282290816ccb857bb05eb453b |
{u'lang': u'LANG_NEUTRAL', u'name': u'RT_ICON', u'offset': 184552, u'sha256': u'4e0d94dd845f166d54ed632cad56f1ab0b6c924eec38ed29cab586a830af939d', u'type': u'dBase IV DBT of *\\002.DBF, blocks size 0, block length 21504, next free block index 40, next free block 0, next used block 0', u'size': 292552}
{u'lang': u'LANG_NEUTRAL', u'name': u'RT_GROUP_ICON', u'offset': 477104, u'sha256': u'f71867d4aa18be5d5ac6d35781373d600d187ad6a383ee01b054d621a2cedbcf', u'type': u'MS Windows icon resource - 1 icon, 256x21', u'size': 20}
{u'lang': u'LANG_CHINESE', u'name': u'RT_VERSION', u'offset': 477124, u'sha256': u'dba2421da8b130e9d7fc61332b5b3c9060a9d41b8a5a5ec797e199bfdf87680c', u'type': u'data', u'size': 564}