SecuriteInfo[.]com[.]Trojan[.]GenericKD[.]65353582[.]8245[.]14486[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.GenericKD.65353582.8245.14486.dll
Size

1.5MB
MD5

a4bc151814a8f8e9ba2a3160c23a3b32
SHA1

798b6e0d95948ddadfdf43ed3799d728c7d6a486
SHA256

08fdb6c4bdfd23bbd7e438eb0644eaf2f204e6d1aeff3e6cbaf7513beba2e717
SHA512

0958059dd33e353b3fd98766308cb1d8c4fc0cf294c4998dba4b171ed3ed57b92e6da7cbcdce5697869a89c3c6091fda68178a92a53fcfa9fd0c8a9e139df521
SSDEEP

24576:Cnn39uRRlsmAukvhe/z+KrsHc5OHo3iwdabM/gJur7di6opc4KTG165mlt11MzsM:Cn39ssmAukCz+4sHc4I3BEZsrM6o1KTh

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Trojan.GenericKD.65353582.8245.14486.dll
.dll windows x86

a2833106949ae6e20c40ed0128f9df4b

Code Sign

78:d1:ee:69:0a:f0:3a:8f:4f:31:4d:74:3e:df:49:79
Certificate

Issuer

CN=Encor Burn Inc.

Not Before

31-12-2018 21:00

Not After

31-12-2098 21:00

Subject

CN=Encor Burn Inc.

Extended Key Usages

ExtKeyUsageCodeSigning

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02-05-2019 00:00

Not After

18-01-2038 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11-05-2022 00:00

Not After

10-08-2033 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

78:d1:ee:69:0a:f0:3a:8f:4f:31:4d:74:3e:df:49:79
Certificate

Issuer

CN=Encor Burn Inc.

Not Before

31-12-2018 21:00

Not After

31-12-2098 21:00

Subject

CN=Encor Burn Inc.

Extended Key Usages

ExtKeyUsageCodeSigning

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12-01-2016 00:00

Not After

11-01-2031 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23-12-2017 00:00

Not After

22-03-2029 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

de:58:fa:5e:d4:bd:d3:91:18:90:5a:f7:b5:4b:1b:90:28:a1:dc:63:7d:29:0d:e0:60:8b:7d:81:3b:d7:98:33
Signer

Actual PE Digest

de:58:fa:5e:d4:bd:d3:91:18:90:5a:f7:b5:4b:1b:90:28:a1:dc:63:7d:29:0d:e0:60:8b:7d:81:3b:d7:98:33

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Encor Burn Inc.

03-02-2023 20:56
Valid: false

79:ac:6a:29:4a:53:d6:df:91:4c:1c:1c:21:9c:89:7e:63:54:ba:01
Signer

Actual PE Digest

79:ac:6a:29:4a:53:d6:df:91:4c:1c:1c:21:9c:89:7e:63:54:ba:01

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Encor Burn Inc.

02-02-2023 17:57
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree

Exports

Exports

rundll

Sections

.text
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pelock
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a2833106949ae6e20c40ed0128f9df4b

Code Sign

78:d1:ee:69:0a:f0:3a:8f:4f:31:4d:74:3e:df:49:79Certificate

Extended Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43Certificate

Extended Key Usages

Key Usages

78:d1:ee:69:0a:f0:3a:8f:4f:31:4d:74:3e:df:49:79Certificate

Extended Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

de:58:fa:5e:d4:bd:d3:91:18:90:5a:f7:b5:4b:1b:90:28:a1:dc:63:7d:29:0d:e0:60:8b:7d:81:3b:d7:98:33Signer

Signature Validations

Verification

03-02-2023 20:56 Valid: false

79:ac:6a:29:4a:53:d6:df:91:4c:1c:1c:21:9c:89:7e:63:54:ba:01Signer

Signature Validations

Verification

02-02-2023 17:57 Valid: false

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: - Virtual size: 16KB

.rsrc Size: 105KB - Virtual size: 108KB

.pelock Size: 1.3MB - Virtual size: 1.3MB

78:d1:ee:69:0a:f0:3a:8f:4f:31:4d:74:3e:df:49:79
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

78:d1:ee:69:0a:f0:3a:8f:4f:31:4d:74:3e:df:49:79
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

de:58:fa:5e:d4:bd:d3:91:18:90:5a:f7:b5:4b:1b:90:28:a1:dc:63:7d:29:0d:e0:60:8b:7d:81:3b:d7:98:33
Signer

03-02-2023 20:56
Valid: false

79:ac:6a:29:4a:53:d6:df:91:4c:1c:1c:21:9c:89:7e:63:54:ba:01
Signer

02-02-2023 17:57
Valid: false

.text
Size: - Virtual size: 16KB

.rsrc
Size: 105KB - Virtual size: 108KB

.pelock
Size: 1.3MB - Virtual size: 1.3MB