SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]4246[.]5426[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.4246.5426.exe
Size

63KB
MD5

652033fef50b9b2b84d8f3b1258dc2c4
SHA1

bc7ceea465cee2c573a3cbef9688a97b7b84570f
SHA256

12389fa39f9677dcb5d782316649a7bf7a56d76a6222f643b708808b61b07537
SHA512

a744b40ca309172b9ba70ebed116d07dd15ac732e62b944fcc1ca2a158b44d0007be714cdb0dd6fe0740f24fbd77a6a6ee6a50d2ce02bb2ad2df3b104e24e040
SSDEEP

1536:1UQMGCKBXdsqfK94lOrJCsXoiG5M4IqPD9u2TpPE3D:1ZvlKelEK519laz

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.PWSX-gen.4246.5426.exe
.exe windows x86

c0443729f0656bf832263c685fa862df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

imm32

ImmGetCompositionWindow
ImmSetCompositionStringW
ImmAssociateContext
ImmReSizeIMCC
ImmRequestMessageA
ImmGetIMEFileNameA

shlwapi

StrCSpnIW
StrCSpnW
PathRemoveFileSpecW
StrToIntExW
SHDeleteKeyW
UrlHashA
StrCpyNW

kernel32

GetConsoleWindow
Process32First
GetSystemDefaultLCID
AreFileApisANSI
FreeLibraryAndExitThread
ExitProcess
HeapFree
HeapAlloc
GetProcessHeap
GetLastError
GetModuleFileNameW
GetModuleHandleA
lstrlenW
lstrcpyW
lstrcpynW
CompareStringW
GetThreadLocale
MultiByteToWideChar
FreeLibrary
GetProcAddress
LoadLibraryExW
GetSystemDirectoryW
ReadFile
WriteFile
CreateThread
CreateFileW
lstrcatW
GetCommandLineW
LoadLibraryW
SetStdHandle
FlushFileBuffers
HeapReAlloc
IsValidCodePage
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
CancelIo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlUnwind
SetFilePointer
GetStringTypeW
GetModuleHandleW
Sleep
DeleteCriticalSection
GetStartupInfoW
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
DecodePointer
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSetInformation
LeaveCriticalSection
EnterCriticalSection
CloseHandle
WriteConsoleW
LCMapStringW
HeapSize
SetEndOfFile
WideCharToMultiByte
GetOEMCP

winmm

waveInGetNumDevs
waveOutSetPitch
mmioWrite
timeGetSystemTime
mmioFlush

mscms

CreateColorTransformW
CheckBitmapBits
SetStandardColorSpaceProfileW
OpenColorProfileA
GetColorDirectoryW
SpoolerCopyFileEvent
DisassociateColorProfileFromDeviceW
GenerateCopyFilePaths

setupapi

SetupDiClassNameFromGuidW
InstallHinfSectionA
SetupGetFileCompressionInfoA
SetupSetSourceListA
SetupDiSetDeviceInstallParamsW
SetupCancelTemporarySourceList

pdh

PdhMakeCounterPathW
PdhAddCounterA
PdhGetFormattedCounterValue
PdhVbOpenQuery
PdhConnectMachineA

wsnmp32

ord606
ord500
ord102
ord600
ord602
ord402
ord103
ord401

msi

ord88
ord108
ord59
ord113
ord9
ord66
ord195
ord175
ord6
ord74
ord190
ord141
ord169

user32

ShowWindow
LoadStringW

advapi32

CreateServiceW
RegOpenKeyW
RegQueryValueExW
RegCloseKey
OpenServiceW
DeleteService
OpenSCManagerW
CloseServiceHandle

ole32

CoInitializeEx
CoUninitialize
CLSIDFromString

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c0443729f0656bf832263c685fa862df

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

imm32

shlwapi

kernel32

winmm

mscms

setupapi

pdh

wsnmp32

msi

user32

advapi32

ole32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 11KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 11KB