SecuriteInfo[.]com[.]Variant[.]Fragtor[.]158039[.]11933[.]7020[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Fragtor.158039.11933.7020.exe
Size

7KB
MD5

c21c53ecaeb70c20582401373ace55e5
SHA1

887434278ebadaa1b6b694b390715a4e6b7b9a02
SHA256

298fd3bafad7e798996a9b1fb02d0ec257586abd403ae4514374f03066238455
SHA512

8f1beb8894b9fb779a539a6f9d0672827ff189979097d6604f38c568b6284a07fd7151b5c0bff4df3604527831d2fad61ffac39464b762ed8ac497f283b49003
SSDEEP

96:Br8H3DCWiNWAHsDi3rJrc0oz69S2VBtBd1uwmXNOqjCXUVRjb:N8XuWiNWpiJzoGBDn1uVbjCXmR

Score

N/A

Malware Config

Signatures

Files

SecuriteInfo.com.Variant.Fragtor.158039.11933.7020.exe
.exe windows x86

bfe8f8c85741cc2e1b9b31af6633aaca

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmCreateContext
ImmGetRegisterWordStyleA
ImmInstallIMEW
ImmUnregisterWordW

rtm

MgmDeInitialize
MgmInitialize
RtmAddRoute
RtmBlockSetRouteEnable
RtmDeregisterClient
RtmGetNextRoute
RtmIsRoute
RtmRegisterClient

setupapi

SetupDeleteErrorA
SetupDiBuildClassInfoListExA
SetupPromptForDiskA
SetupRemoveFromDiskSpaceListW
SetupRenameErrorW

wininet

FtpOpenFileW
FtpPutFileA
FtpSetCurrentDirectoryA
HttpAddRequestHeadersA
InternetConnectA
InternetGetCookieA
InternetTimeFromSystemTime
RetrieveUrlCacheEntryFileA
ShowSecurityInfo

ole32

MkParseDisplayName
OleCreateFromFile
OleGetClipboard
OleInitialize
ReadOleStg
StgCreatePropStg
StgOpenStorage
UtConvertDvtd32toDvtd16

wsock32

WSAAsyncGetProtoByNumber
WSACancelBlockingCall
ord1107
WSASetLastError
getprotobyname
sendto
ord1105

msvcrt

_XcptFilter
__p__commode
__p__fmode
__set_app_type
__setusermatherr
__wgetmainargs
_adjust_fdiv
_controlfp
_except_handler3
_exit
_initterm
_wcmdln
exit
memcpy

kernel32

EnumLanguageGroupLocalesW
GetModuleHandleW
GetProcAddress
GetStartupInfoW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 212B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfe8f8c85741cc2e1b9b31af6633aaca

Headers

DLL Characteristics

File Characteristics

Imports

imm32

rtm

setupapi

wininet

ole32

wsock32

msvcrt

kernel32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 80B

.00cfg Size: 512B - Virtual size: 8B

.rsrc Size: 512B - Virtual size: 424B

.reloc Size: 512B - Virtual size: 212B

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 80B

.00cfg
Size: 512B - Virtual size: 8B

.rsrc
Size: 512B - Virtual size: 424B

.reloc
Size: 512B - Virtual size: 212B