SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]23415[.]10724[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.23415.10724.exe
Size

59KB
MD5

3144e4dc2a8dda0de028f6108374c7bc
SHA1

066920c400096b3f471d2ac35f955bc5b097401d
SHA256

76c80044908711f236ee8c5258683abb5d09563e439bdd7e1fab5980834cb975
SHA512

f41803d02888f407564c8f93bbe4a1a5e6b9afad7245192b95c62063110a5a309e9f34fb0e69e2df58a61710e2f4000ec3e956e07eeadb1edae9c79636e504f3
SSDEEP

768:hChCFwC8m4JJq+rFo22+KvobYzgBhEmZW4wZ7JiNKgWDRkij0a9XBa:h6m43p0V2ukQ9XY

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.PWSX-gen.23415.10724.exe
.exe windows x86

4558597b014fc5a8daa3b4d2d1cfa143

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetCandidateListCountA
ImmGetRegisterWordStyleA
ImmGetConversionStatus

shlwapi

StrStrIA

kernel32

WriteConsoleW
CloseHandle
lstrlenW
VirtualProtect
DeleteCriticalSection
lstrcpyW
CreateFileW
GetStringTypeW
LCMapStringEx
HeapReAlloc
HeapSize
GetConsoleCP
FlushFileBuffers
SetStdHandle
LoadLibraryW
OutputDebugStringW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
LoadLibraryExW
HeapAlloc
ReadFile
GetCommandLineA
IsProcessorFeaturePresent
EncodePointer
DecodePointer
GetLastError
InterlockedDecrement
ExitProcess
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
MultiByteToWideChar
GetStdHandle
WriteFile
GetModuleFileNameW
GetProcessHeap
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetConsoleMode
ReadConsoleW
SetFilePointer
SetFilePointerEx
GetFileType
InitOnceExecuteOnce
GetStartupInfoW
SetLastError
InterlockedIncrement
GetCurrentThreadId
GetModuleFileNameA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTickCount64
GetEnvironmentStringsW
FreeEnvironmentStringsW
WideCharToMultiByte
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetCurrentProcess
TerminateProcess
GetModuleHandleW
HeapFree
Sleep
SetEndOfFile

shell32

Shell_NotifyIconA
DragQueryFile
Shell_NotifyIcon
SHBrowseForFolderA

mpr

WNetConnectionDialog1A
WNetCancelConnection2W
WNetGetLastErrorW
WNetGetResourceParentW

msacm32

acmFormatEnumW
acmStreamMessage
acmFormatTagEnumW
acmFormatTagEnumA
acmFormatTagDetailsA
acmFormatChooseA

setupapi

SetupQuerySourceListA
SetupDiGetDriverInstallParamsA
SetupDiClassGuidsFromNameA
SetupDiDeleteDevRegKey
SetupCloseInfFile

Exports

Exports

_CredPackAuthenticationBufferW@20
_CredUIParseUserNameW@20
_CredUIPromptForWindowsCredentialsW@36
_CredUIReadSSOCredW@8
_CredUIStoreSSOCredW@16
_CredUnPackAuthenticationBufferW@36

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4558597b014fc5a8daa3b4d2d1cfa143

Headers

DLL Characteristics

File Characteristics

Imports

imm32

shlwapi

kernel32

shell32

mpr

msacm32

setupapi

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 11KB

.reloc Size: 7KB - Virtual size: 6KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 11KB

.reloc
Size: 7KB - Virtual size: 6KB