SecuriteInfo[.]com[.]FileRepMalware[.]30383[.]24466

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.FileRepMalware.30383.24466
Size

15KB
MD5

80eeb62c55adb38b74d44cee713a78da
SHA1

e1415d87c1898c8e761562b5e856a13325a0fca7
SHA256

d99c61e6d3e706ae1a8432f51883ea14bc29357affd517281eaeefb101ef73b4
SHA512

c6f9556db077904be43dde508f337159eec112acc7904fc9ce3c680cf5210c02b21d41ab95e0b1fd7fb18b7bdbb8a2d190f6cdb0ffe39874d7edf35956beb517
SSDEEP

192:9ddJ1bUrZD2ooHzMx+om3BAVEf/QvDtHiPmoynO5sSxFOYB:pTox4A0mI5sSf9

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.FileRepMalware.30383.24466
.exe windows x86

5d8163b20a381e599f27d471250d7b08

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_wfopen
wcstol
fread
_adjust_fdiv
__p__commode
exit
_wcmdln
__wgetmainargs
_initterm
__p__fmode
_XcptFilter
__set_app_type
_except_handler3
_onexit
__dllonexit
_controlfp
__setusermatherr
_exit
memcpy
ftell
fseek
wcschr

comctl32

ord17

kernel32

GetLastError
HeapAlloc
HeapFree
GetProcessHeap
ExitProcess
CreateThread
GetSystemDirectoryW
FreeLibrary
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
LoadLibraryExW
LoadLibraryW
lstrcpynW
lstrcpyW
lstrcatW
lstrlenW
CompareStringW
MultiByteToWideChar
GetThreadLocale
GetModuleHandleW
ReadFile
GetCommandLineW
WriteFile
CreateFileW
GetStartupInfoW

comdlg32

GetSaveFileNameW
GetFileTitleW
PrintDlgA
ReplaceTextW
FindTextW
CommDlgExtendedError
PageSetupDlgW
GetFileTitleA

wsnmp32

ord301
ord203
ord220
ord107

wsock32

connect
ord1110
bind
getprotobyname
recvfrom
listen

wininet

InternetSetOptionExA
InternetSetOptionA
CreateUrlCacheGroup
InternetGetConnectedState
InternetSetOptionExW
FindFirstUrlCacheContainerW
RetrieveUrlCacheEntryFileW
InternetErrorDlg

rtutils

RouterLogEventDataW
TracePrintfExA
RouterLogEventW
RouterGetErrorStringW

crypt32

CertFindCTLInStore
CryptDecodeObject
CryptEncodeObject
CryptImportPublicKeyInfo
CertGetEnhancedKeyUsage
CryptVerifyCertificateSignature
CertSerializeCRLStoreElement
CryptDecodeMessage

mapi32

ord182
ord23
ord66
ord194
ord62
ord157
ord12
ord181

setupapi

SetupDiCreateDeviceInfoListExW
SetupDiGetHwProfileListExW
SetupDiAskForOEMDisk
SetupDiInstallDevice

user32

LoadStringW

advapi32

RegQueryValueExW
RegOpenKeyW
RegCloseKey
CloseServiceHandle
CreateServiceW
DeleteService
OpenSCManagerW
OpenServiceW

ole32

CoUninitialize
CLSIDFromString
CoInitializeEx

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d8163b20a381e599f27d471250d7b08

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

comctl32

kernel32

comdlg32

wsnmp32

wsock32

wininet

rtutils

crypt32

mapi32

setupapi

user32

advapi32

ole32

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 76B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 1024B - Virtual size: 704B

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 76B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 1024B - Virtual size: 704B