SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]18380[.]17671[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.18380.17671.exe
Size

63KB
MD5

bc6f0e80eb06b89a951c63c576b5b277
SHA1

7739719a662a44231ccfcfa4ada385f513bd2195
SHA256

60ff3e0093fbf73d3265b1a68a57412327545e8c4bff29c0710b76c4e10fcc6f
SHA512

358c9d6a99e5626f0cfc83eb2c4134e27e3b7a60ee0ec67d4f044e88e97380335e21b2e22db94f2c840035bb493a918def3bcd2185ca159f8f91f74d6d552630
SSDEEP

1536:xUQMGCKBXdsqfK94lOrJCsXoiG5M4IqPD9u2TpPE3D:xZvlKelEK519laz

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.PWSX-gen.18380.17671.exe
.exe windows x86

c0443729f0656bf832263c685fa862df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

imm32

ImmGetCompositionWindow
ImmSetCompositionStringW
ImmAssociateContext
ImmReSizeIMCC
ImmRequestMessageA
ImmGetIMEFileNameA

shlwapi

StrCSpnIW
StrCSpnW
PathRemoveFileSpecW
StrToIntExW
SHDeleteKeyW
UrlHashA
StrCpyNW

kernel32

GetConsoleWindow
Process32First
GetSystemDefaultLCID
AreFileApisANSI
FreeLibraryAndExitThread
ExitProcess
HeapFree
HeapAlloc
GetProcessHeap
GetLastError
GetModuleFileNameW
GetModuleHandleA
lstrlenW
lstrcpyW
lstrcpynW
CompareStringW
GetThreadLocale
MultiByteToWideChar
FreeLibrary
GetProcAddress
LoadLibraryExW
GetSystemDirectoryW
ReadFile
WriteFile
CreateThread
CreateFileW
lstrcatW
GetCommandLineW
LoadLibraryW
SetStdHandle
FlushFileBuffers
HeapReAlloc
IsValidCodePage
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
CancelIo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlUnwind
SetFilePointer
GetStringTypeW
GetModuleHandleW
Sleep
DeleteCriticalSection
GetStartupInfoW
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
DecodePointer
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSetInformation
LeaveCriticalSection
EnterCriticalSection
CloseHandle
WriteConsoleW
LCMapStringW
HeapSize
SetEndOfFile
WideCharToMultiByte
GetOEMCP

winmm

waveInGetNumDevs
waveOutSetPitch
mmioWrite
timeGetSystemTime
mmioFlush

mscms

CreateColorTransformW
CheckBitmapBits
SetStandardColorSpaceProfileW
OpenColorProfileA
GetColorDirectoryW
SpoolerCopyFileEvent
DisassociateColorProfileFromDeviceW
GenerateCopyFilePaths

setupapi

SetupDiClassNameFromGuidW
InstallHinfSectionA
SetupGetFileCompressionInfoA
SetupSetSourceListA
SetupDiSetDeviceInstallParamsW
SetupCancelTemporarySourceList

pdh

PdhMakeCounterPathW
PdhAddCounterA
PdhGetFormattedCounterValue
PdhVbOpenQuery
PdhConnectMachineA

wsnmp32

ord606
ord500
ord102
ord600
ord602
ord402
ord103
ord401

msi

ord88
ord108
ord59
ord113
ord9
ord66
ord195
ord175
ord6
ord74
ord190
ord141
ord169

user32

ShowWindow
LoadStringW

advapi32

CreateServiceW
RegOpenKeyW
RegQueryValueExW
RegCloseKey
OpenServiceW
DeleteService
OpenSCManagerW
CloseServiceHandle

ole32

CoInitializeEx
CoUninitialize
CLSIDFromString

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c0443729f0656bf832263c685fa862df

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

imm32

shlwapi

kernel32

winmm

mscms

setupapi

pdh

wsnmp32

msi

user32

advapi32

ole32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 11KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 11KB