SecuriteInfo[.]com[.]Win32[.]TrojanX-gen[.]31060[.]3872[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.TrojanX-gen.31060.3872.exe
Size

11KB
MD5

69fd49d17c4f87ffd7dc8b522221f0b7
SHA1

1390e8826e287fe76c123f09268d1f1c4f017efd
SHA256

6b17a260683b2b992a0e9e3a6fd416ead80aaf3939f80cf069669aff9bf4484d
SHA512

cc74d015dbe80f5da2106d54d26d73341bc7f665d99f633828347442e87a4fc12323c47d5ca910e6404a325639180b2915605e7b4d352f56159af449047facb5
SSDEEP

192:cyExVutEKTVBdB5tIWy5nhoPCFIWzmoynN1t3LwY:3R6KtBEWgho6+WzmFG

Score

N/A

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.TrojanX-gen.31060.3872.exe
.exe windows x86

9545553d7da989ab9d9db91fad701b26

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_exit
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter

kernel32

WaitForSingleObject
GetModuleHandleW
GetStartupInfoW
EnumSystemCodePagesW
CreateEventW
CreateFileW
GetFileSize
ReadFile
HeapAlloc
HeapFree
GetProcessHeap
SetEvent
VirtualAlloc

msvfw32

DrawDibStop
ICGetDisplayFormat
DrawDibEnd

avifil32

AVIFileGetStream
AVIBuildFilterA
EditStreamSetName
AVIStreamEndStreaming
AVIStreamGetFrameClose
AVIFileEndRecord
AVIPutFileOnClipboard

avicap32

capCreateCaptureWindowW

resutils

ResUtilGetBinaryProperty
ResUtilSetSzValue
ResUtilEnumResources
ResUtilSetMultiSzValue
ClusWorkerCheckTerminate
ResUtilSetPropertyParameterBlock
ResUtilGetDwordProperty
ResUtilSetExpandSzValue
ResUtilSetPrivatePropertyList
ResUtilDupString
ResUtilSetDwordValue
ResUtilVerifyResourceService
ResUtilGetEnvironmentWithNetName

wsock32

ord1108
WSAAsyncGetHostByName
socket
ord1112
WEP

rpcrt4

UuidToStringW
RpcSsAllocate
I_RpcSend
NdrSimpleStructBufferSize

odbc32

ord221
ord165
VFreeErrors
ord78
ord63
ord255
ord56
ord21
ord77

mpr

WNetGetNetworkInformationA
WNetGetUserW
WNetGetResourceParentA
WNetAddConnection2A
WNetGetResourceInformationW
WNetDisconnectDialog1A
WNetDisconnectDialog1W
WNetEnumResourceW
WNetConnectionDialog

wsnmp32

ord603
ord604
ord320

oleaut32

SafeArrayCreate
VarCyFromR4
VarCyFromDisp
OleSavePictureFile

ole32

CoRegisterClassObject
CLSIDFromString
CoFreeUnusedLibraries
CoMarshalInterface
CoUninitialize
CoInitializeEx
CoGetClassObject
CoRevokeClassObject
CoRegisterSurrogate

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9545553d7da989ab9d9db91fad701b26

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

msvfw32

avifil32

avicap32

resutils

wsock32

rpcrt4

odbc32

mpr

wsnmp32

oleaut32

ole32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 84B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 484B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 84B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 484B