SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]25684[.]25401[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.25684.25401.exe
Size

92KB
MD5

4bade84b61771d98f54b834719d72933
SHA1

99bcf22f3928f897db12ecbf9a07edf1302cd4da
SHA256

0ea54627351a13db93687062f69a4671bd0f0d36d3e03c602d39687eadeb8c02
SHA512

2cf74d92e1d6c0cadfafe7382ca54a2c7f36ec46498e43282c6f8b6dd84ea7f0b91f3af9bd653060e78a8ca586ffdd81643e8cf56844402819fd273e6c656827
SSDEEP

1536:7mrouMv+iWLqnn7P73rvSijPMEGmQiD4EMxiNNJr6073W9uoYiPVW34msWZcdHIT:ylY7P73TzBDlMxiQ0C9uoYiP434/HcIW

Score

N/A

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.PWSX-gen.25684.25401.exe
.exe windows x86

f08dc54b0a28d44d1319427d741ea823

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

imm32

ImmGetIMEFileNameA
ImmGetIMCLockCount
ImmUnlockIMC
ImmIsUIMessageW
ImmGetCandidateListW
ImmGetDefaultIMEWnd
ImmDestroySoftKeyboard

shlwapi

PathStripPathW
PathSetDlgItemPathW
SHRegSetUSValueW
PathRemoveBlanksA
SHRegCreateUSKeyW
StrDupA
StrCSpnIA
UrlEscapeA

kernel32

LCMapStringW
GetStringTypeW
GetFileType
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapAlloc
GetDateFormatW
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
WriteFile
GetStdHandle
LoadLibraryExW
GetProcAddress
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
GetProcessHeap
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetLastError
GetLastError
RtlUnwind
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
lstrcpyW
VirtualAlloc
GetLocalTime
ReadFile
GetFileSize
CreateFileW
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
RaiseException
CloseHandle
DecodePointer
WriteConsoleW
EncodePointer
HeapSize
HeapReAlloc
FlushFileBuffers
EnumSystemCodePagesW
TlsAlloc
GetTimeFormatW
HeapFree

rtutils

TraceDeregisterA
TraceRegisterExA
RouterLogEventStringW
LogErrorW
RouterLogEventStringA
TracePrintfA
TraceDumpExW

wininet

CreateUrlCacheContainerW
GopherGetAttributeW
InternetReadFile
HttpSendRequestExA
CommitUrlCacheEntryW
FindNextUrlCacheEntryExW
ParseX509EncodedCertificateForListBoxEntry

oleaut32

VarR8FromDisp
VarUI2FromUI1
VarI1FromCy
VarR4FromBool
VarCyFromI1
VarCyFix
VarI2FromUI1
VarCyAdd

mpr

WNetCancelConnectionW
WNetGetConnectionA
WNetGetProviderNameA
WNetCancelConnection2W

rtm

MgmGetNextMfe
RtmLookupIPDestination
RtmRegisterClient
MgmInitialize
MgmGetMfe
MgmDeRegisterMProtocol

winmm

PlaySound
mixerGetLineInfoW
midiInReset
midiOutLongMsg
waveInGetNumDevs

resutils

ResUtilGetAllProperties
ResUtilEnumProperties
ResUtilFindSzProperty
ResUtilSetPropertyTable

user32

CreateWindowExW
RegisterClassW
PostQuitMessage
ShowWindow
DispatchMessageW
TranslateMessage
GetMessageW
LoadStringW
SetWindowPos
SetTimer
EndPaint
KillTimer
LoadMenuW
SetMenu
CheckMenuItem
EnableMenuItem
GetSubMenu
UpdateWindow
GetWindowLongW
GetDC
ReleaseDC
BeginPaint
SetWindowRgn
InvalidateRect
SetWindowTextW
GetWindowRect
MessageBoxW
MapWindowPoints
GetSysColor
GetSysColorBrush
FillRect
SetWindowLongW
CheckMenuRadioItem
LoadCursorW
LoadIconW
DefWindowProcW

gdi32

CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteDC
DeleteObject
Ellipse
GetStockObject
GetTextExtentPointW
CreateEllipticRgn
OffsetRgn
SelectObject
SetBkColor
SetBkMode
SetTextColor
MoveToEx
TextOutW
SetViewportOrgEx
OffsetWindowOrgEx
CreateFontIndirectW
LineTo
CreatePen

comdlg32

ChooseFontW

shell32

ShellAboutW

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f08dc54b0a28d44d1319427d741ea823

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

imm32

shlwapi

kernel32

rtutils

wininet

oleaut32

mpr

rtm

winmm

resutils

user32

gdi32

comdlg32

shell32

Sections

.text Size: 58KB - Virtual size: 58KB

.rdata Size: 29KB - Virtual size: 28KB

.data Size: 2KB - Virtual size: 5KB

.gfids Size: 512B - Virtual size: 224B

.rsrc Size: 512B - Virtual size: 480B

.text
Size: 58KB - Virtual size: 58KB

.rdata
Size: 29KB - Virtual size: 28KB

.data
Size: 2KB - Virtual size: 5KB

.gfids
Size: 512B - Virtual size: 224B

.rsrc
Size: 512B - Virtual size: 480B