SecuriteInfo[.]com[.]Variant[.]Jaik[.]124214[.]32479[.]6597[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Jaik.124214.32479.6597.exe
Size

54KB
MD5

8369d43ad0d09d1a368a9cc901626c08
SHA1

30e2ca5e33c0728da9eb22c29fb56f3a4a5150e8
SHA256

298a3e2be9a3af2f8db97eec5c265895e21f0825f96f624c5b2229d6db81209c
SHA512

51a45329923c236903a49ede6e7cfaeaf3fd81a0ed478acf343d9309524aacdf7150b28bd58ece49941b19e89942a9b70de95b7a89234c91f19bd113b375cbed
SSDEEP

768:KqoLhCal2TeEzJ0O0fpqHxGMHbYipYEQdlSoxfhVEHWyUNKvW6y3Bfaa:KgeEzJD0p3xUHVby0

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Variant.Jaik.124214.32479.6597.exe
.exe windows x86

7b60423d8762133ef9c65e4b4a86b424

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
WriteConsoleW
CreateFileW
HeapReAlloc
LoadLibraryW
OutputDebugStringW
LoadLibraryExW
LCMapStringEx
GetOEMCP
IsValidCodePage
GetConsoleCP
FlushFileBuffers
SetStdHandle
Sleep
GetModuleHandleW
TerminateProcess
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
CloseHandle
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount64
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetModuleFileNameA
VirtualAlloc
GetModuleFileNameW
GetLastError
GetCPInfo
WriteFile
AreFileApisANSI
GetProcAddress
GetConsoleWindow
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
GetACP
GetModuleHandleExW
ExitProcess
ReadFile
GetCommandLineA
IsProcessorFeaturePresent
IsDebuggerPresent
EncodePointer
DecodePointer
GetStringTypeW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
RtlUnwind
MultiByteToWideChar
GetConsoleMode
ReadConsoleW
SetFilePointer
SetFilePointerEx
GetStdHandle
GetFileType
DeleteCriticalSection
InitOnceExecuteOnce
GetStartupInfoW
SetLastError
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
SetEndOfFile

resutils

ResUtilGetSzValue
ResUtilGetPrivateProperties
ResUtilGetMultiSzProperty
ResUtilGetDwordValue
ResUtilGetDwordProperty
ResUtilResourceTypesEqual

mswsock

rexec
GetTypeByNameW
SetServiceA
TransmitFile
inet_network
GetAcceptExSockaddrs
sethostname
rcmd

comdlg32

GetFileTitleW
PageSetupDlgW
ReplaceTextW
GetOpenFileNameW
PageSetupDlgA
ChooseFontW

wininet

InternetAutodialHangup
InternetAutodial
InternetCheckConnectionW
FindNextUrlCacheEntryExW
FtpRenameFileA
FtpPutFileW
InternetGetCookieA
DeleteUrlCacheContainerW

urlmon

GetClassFileOrMime
CreateAsyncBindCtxEx
FindMediaType
BindAsyncMoniker
UrlMkBuildVersion
Extract
IsAsyncMoniker

crypt32

CertAddCRLContextToStore
CryptGetOIDFunctionValue
CertEnumCRLContextProperties
CryptImportPublicKeyInfo

winspool.drv

ResetPrinterW
EndPagePrinter
PrinterProperties
AddFormW
FindFirstPrinterChangeNotification
EnumPrinterDriversA

msvfw32

MCIWndCreateW
DrawDibStop
ICSendMessage

avifil32

AVISaveOptionsFree
IID_IAVIFile
AVIStreamInfoW
AVIBuildFilter
AVIFileOpenA

user32

ShowWindow

ole32

CoInstall

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7b60423d8762133ef9c65e4b4a86b424

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

resutils

mswsock

comdlg32

wininet

urlmon

crypt32

winspool.drv

msvfw32

avifil32

user32

ole32

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 11KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 11KB