SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]23891[.]9082[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.23891.9082.exe
Size

101KB
MD5

7d0c7b8d86ef96dc0c2d6f8f42313b3b
SHA1

fa5081191a5381cfbf7d4fae4a243812ea9461e6
SHA256

237e04952481043247f013aad2b22a2e398854ca7c329ecffbd8d8e32a135be2
SHA512

7929c63213a27938b6872ff1be381607456921a1aab59f7fc306d29f358d1dc06e5f9293f43bfbc9a75ff41b74834ea9846fefe6480cd145dbe6892a14d36c2b
SSDEEP

3072:fl4uZqBztqXqi24XBkFJ1Og9e0DvZFF/OJ:NlZ4MXKWc1V9/OJ

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.PWSX-gen.23891.9082.exe
.exe windows x86

4134d85f6b1d0331402268d6160e01d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

GetStringTypeW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
ReadConsoleW
GetConsoleMode
SetFilePointerEx
WriteFile
WriteConsoleW
GetModuleHandleExW
GetModuleFileNameW
GetFileType
GetStdHandle
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetLastError
GetLastError
RtlUnwind
TerminateProcess
GetCurrentProcess
GetModuleHandleW
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
LCMapStringW
GetCurrentThreadId
FlushFileBuffers
GetConsoleOutputCP
GetCurrentProcessId
QueryPerformanceCounter
HeapSize
HeapReAlloc
SetEndOfFile
lstrcpyW
RaiseException
GetProcessHeap
ExitProcess
GetFileSize
HeapAlloc
CloseHandle
MultiByteToWideChar
CreateFileW
FindClose
VirtualAlloc
GetCommandLineW
HeapFree
ReadFile
EncodePointer
DecodePointer
GetProcAddress

wsnmp32

ord604
ord301
ord901
ord605
ord402

wsock32

WSASetBlockingHook
send
getsockopt
ord1130
ord1110
WEP
WSACleanup

user32

LoadImageW
UpdateWindow
GetUserObjectInformationW
UnloadKeyboardLayout
IsWindowUnicode
EnumChildWindows
RegisterWindowMessageW
GetWindowTextLengthW
GetMessageW
MonitorFromRect
SendMessageW
GetSystemMetrics
SetWindowTextW
RegisterClassExW
LoadAcceleratorsW
GetParent
DispatchMessageW
IsDialogMessageW
GetMonitorInfoW
SetFocus
TranslateAcceleratorW
TranslateMessage
LoadIconW
LoadCursorW
GetDlgItem
ShowWindow

msvfw32

ICClose
DrawDibTime
DrawDibRealize

avifil32

AVIStreamSetFormat
EditStreamSetInfoW
AVIFileInfoW
AVISaveVW

avicap32

AppCleanup

odbc32

ord232
ord111
ord27
ord42
ord265
ord170

ws2_32

WSCEnableNSProvider
WSAConnect
WSAGetServiceClassNameByClassIdW

ole32

HMENU_UserSize
OleConvertIStorageToOLESTREAMEx
OleCreateLinkEx
CreateOleAdviseHolder
OleIsCurrentClipboard
HBRUSH_UserSize
OleRegEnumFormatEtc

comdlg32

GetSaveFileNameW
GetFileTitleW

advapi32

IsTextUnicode

shell32

DragAcceptFiles

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4134d85f6b1d0331402268d6160e01d2

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

wsnmp32

wsock32

user32

msvfw32

avifil32

avicap32

odbc32

ws2_32

ole32

comdlg32

advapi32

shell32

Sections

.text Size: 65KB - Virtual size: 64KB

.rdata Size: 26KB - Virtual size: 26KB

.data Size: 3KB - Virtual size: 9KB

.gfids Size: 512B - Virtual size: 224B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 65KB - Virtual size: 64KB

.rdata
Size: 26KB - Virtual size: 26KB

.data
Size: 3KB - Virtual size: 9KB

.gfids
Size: 512B - Virtual size: 224B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 4KB - Virtual size: 4KB