SecuriteInfo[.]com[.]Win32[.]InjectorX-gen[.]12958[.]11002[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.InjectorX-gen.12958.11002.exe
Size

104KB
MD5

7b589372e64740fa6ab45cef78e9e2bd
SHA1

d201a0fc2954185bb94b3d563269e669c99496de
SHA256

c69c3c3c114de77d2c89b7d4ec408f1f1a4b0c8e85dd8f98eeb987661be64885
SHA512

752c40b72fe8b496c9d4dd6ca3c6edb360b88a8c9a81aaabdde9526d57395b27965e6723ff94f48a2192d467e99de68ef07e175ec25908e533c42ec08009af5f
SSDEEP

1536:E4Pp96pYV70SqIyBNWdDNDS0qpKIGQ1NomhREz5//H6rKNOmlua/K+7LCIOGv:BPpDw4yuNDDqc61NoSiVn6rm5y2LHxv

Score

N/A

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.InjectorX-gen.12958.11002.exe
.exe windows x86

49ff7ec692a5272c8ac3733e927c3deb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
WriteFile
HeapAlloc
GetProcessHeap
WideCharToMultiByte
GetOEMCP
WriteConsoleW
GetStdHandle
lstrlenW
ExitProcess
LocalFree
CompareStringW
FindClose
FindFirstFileW
GetFileAttributesW
lstrcatW
GetFullPathNameW
lstrcpyW
GetEnvironmentVariableW
GetExitCodeProcess
WaitForSingleObject
AssignProcessToJobObject
SetInformationJobObject
CreateJobObjectA
SetConsoleCtrlHandler
GetLastError
CreateProcessW
GetBinaryTypeW
EnumLanguageGroupLocalesW
ReadFile
GetFileSize
CreateFileW
VirtualAlloc
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
FlushFileBuffers
CloseHandle
HeapSize
HeapReAlloc
GetStringTypeW
LCMapStringW
SetStdHandle
RtlUnwind
GetLocaleInfoW
LoadLibraryW
InterlockedExchange
FreeLibrary
FatalAppExitA
MultiByteToWideChar
Sleep
IsValidCodePage
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCurrentThread
InterlockedDecrement
IsValidLocale
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
GetCommandLineW
HeapSetInformation
GetStartupInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
HeapCreate
HeapDestroy
IsProcessorFeaturePresent
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue

mswsock

getnetbyname
rcmd
GetTypeByNameW
NPLoadNameSpaces
sethostname
SetServiceA
EnumProtocolsW
GetAddressByNameW
WSARecvEx
rresvport

loadperf

LoadPerfCounterTextStringsW
UnloadPerfCounterTextStringsW
LoadPerfCounterTextStringsA

winmm

mmioSetBuffer
mmioDescend
mmioCreateChunk
PlaySound
mixerGetDevCapsW

mpr

WNetGetConnectionW
WNetGetLastErrorA
WNetGetNetworkInformationW
WNetConnectionDialog

odbc32

ord247
ord51
ValidateErrorQueue
ord150
ord14
ord136
ord232
ord160

shell32

ShellExecuteExW

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49ff7ec692a5272c8ac3733e927c3deb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

mswsock

loadperf

winmm

mpr

odbc32

shell32

Sections

.text Size: 83KB - Virtual size: 82KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 11KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 83KB - Virtual size: 82KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 11KB

.reloc
Size: 3KB - Virtual size: 3KB