SecuriteInfo[.]com[.]Win32[.]TrojanX-gen[.]23361[.]1918

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.TrojanX-gen.23361.1918
Size

7KB
MD5

64c0d419aeb5bcafe0894040d05c8ed5
SHA1

a5af832cebcd4d967e74ab99ebb99a83f0e5158d
SHA256

52f61a9b187c26bb58f92acd6efb272a760a5adf12eda1c829d693210f951c14
SHA512

949f9dc4f544dab5d2604c54d50804081afa31d73aaa423e2e1d74721ab32ab5924d96707f80364a7be56a7db65fa508a9822cf5212e6d063ea5c6022b1349c8
SSDEEP

96:EF+8cImJTPymL/Zz0o/ZHPtboyn34R16cP/F+Y:EFbbgem/Zz5/ZHP1oyng3P/F+Y

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.TrojanX-gen.23361.1918
.exe windows x86

f1e2cc735472b98ab8038d5251e2d0ea

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_acmdln
exit
__getmainargs
_exit
_initterm
__setusermatherr
_except_handler3
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_XcptFilter
memcpy
fseek
ftell
fread
fopen
wcsrchr
malloc
wcschr

imm32

ImmSetHotKey
ImmSimulateHotKey
ImmGetIMCCSize
ImmGetIMEFileNameA
ImmGetCompositionFontW
ImmGetGuideLineA
ImmGetCompositionWindow
ImmLockIMC

kernel32

CreateNamedPipeA
GetStartupInfoA
GetModuleHandleA
lstrcpyW
VirtualProtect
lstrlenW
GetEnvironmentStrings
GetUserDefaultLangID
FindFirstFileW

wininet

ReadUrlCacheEntryStream
InternetQueryOptionW
SetUrlCacheEntryInfoW
InternetGetConnectedState
InternetSetStatusCallback

user32

DdeGetLastError
DestroyAcceleratorTable
InsertMenuA
EnumWindowStationsA
DlgDirListA
GetMenuItemRect
MonitorFromRect

gdi32

LPtoDP
GetGlyphOutlineW
FillPath
GetGlyphIndicesW
GetGlyphOutline
GdiPlayPrivatePageEMF

wsnmp32

ord302
ord604
ord103
ord101
ord106
ord203
ord204
ord901

urlmon

URLDownloadToCacheFileW
ObtainUserAgentString
CoInternetQueryInfo
URLDownloadToCacheFileA
MkParseDisplayNameEx
CoGetClassObjectFromURL

resutils

ResUtilVerifyService
ResUtilGetPropertySize
ResUtilGetProperty
ResUtilGetDwordProperty
ResUtilEnumResources
ResUtilResourcesEqual
ResUtilGetPrivateProperties

Exports

Exports

_CredPackAuthenticationBufferW@20
_CredUIParseUserNameW@20
_CredUIPromptForWindowsCredentialsW@36
_CredUIReadSSOCredW@8
_CredUIStoreSSOCredW@16
_CredUnPackAuthenticationBufferW@36

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1e2cc735472b98ab8038d5251e2d0ea

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

imm32

kernel32

wininet

user32

gdi32

wsnmp32

urlmon

resutils

Exports

Exports

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 344B

.reloc Size: 1024B - Virtual size: 536B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 344B

.reloc
Size: 1024B - Virtual size: 536B