SecuriteInfo[.]com[.]Trojan[.]Loader[.]1363[.]7772[.]14132[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.Loader.1363.7772.14132.exe
Size

147KB
MD5

b545eeb0fc5312fa44c44656405c4650
SHA1

b4d549feb61e5584f304ec0c80c07de240824663
SHA256

2b31311b62da5ef612b3c8060456914fb0e23e095a79ad21b0c9e05569016910
SHA512

f5682d6c5aca028d12765680d9ef0d0579d69b87ff3dbd16d6c50e4a04d696d65db6073c3c51b5212c0c67ec2903fbcb47f52f6dd51841a89015da4350ef11d8
SSDEEP

3072:9yCId32Q5MsDxVxb95Xwy/S83pRSxMl1vUhAd:9yCId32QH595Xwy/N3zqy

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Trojan.Loader.1363.7772.14132.exe
.exe windows x86

e93b0fa594d670a466cb6a5c504e254c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_SetBkColor
PropertySheetW

kernel32

lstrcmpW
lstrcpyW
lstrcatW
lstrlenW
FileTimeToSystemTime
GetDateFormatW
GetLocaleInfoW
GetConsoleWindow
IsValidLocaleName
LCMapStringEx
GetUserDefaultLocaleName
GetLocaleInfoEx
CompareStringEx
GetDateFormatEx
GetTimeFormatEx
HeapSize
GetStringTypeW
WriteConsoleW
LoadLibraryW
OutputDebugStringW
SetConsoleCtrlHandler
LoadLibraryExW
FreeLibrary
InterlockedExchange
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetConsoleCP
FlushFileBuffers
SetStdHandle
Sleep
FatalAppExitA
GetModuleHandleW
TerminateProcess
HeapAlloc
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
FreeEnvironmentStringsW
FormatMessageW
GetTickCount64
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetModuleFileNameA
SetLastError
GetLastError
CloseHandle
CreateFileW
CompareFileTime
GetModuleFileNameW
WriteFile
AreFileApisANSI
VirtualLock
GetProcAddress
EndUpdateResourceA
HeapReAlloc
GetModuleHandleExW
ExitProcess
GetCurrentThreadId
GetCurrentThread
InterlockedDecrement
InterlockedIncrement
GetStartupInfoW
InitOnceExecuteOnce
DeleteCriticalSection
GetFileType
GetStdHandle
EnumSystemLocalesEx
SetFilePointerEx
SetFilePointer
ReadConsoleW
GetConsoleMode
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DecodePointer
EncodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
SetEndOfFile
MultiByteToWideChar
FindCloseChangeNotification
GetStringTypeExA
MulDiv
LocalFree
VirtualAlloc
DisableThreadLibraryCalls
GetProcessHeap
GetEnvironmentStringsW
HeapFree
ReadFile
GetExitCodeThread
GetCurrentProcess

resutils

ResUtilResourcesEqual
ClusWorkerCheckTerminate
ResUtilGetPrivateProperties
ResUtilGetBinaryProperty
ResUtilGetProperty
ResUtilGetPropertiesToParameterBlock

wsock32

ord1109
htons
WSACancelAsyncRequest
MigrateWinsockConfiguration
ord1141
ord1142
ord1105
ord1113
ord1107
ord1112
ord1100
ord1116
bind
WSAAsyncGetProtoByName

msacm32

acmStreamClose
acmFormatTagEnumA
acmFormatChooseA
acmMetrics
acmStreamConvert
acmStreamUnprepareHeader
acmDriverRemove

rtm

MgmDeRegisterMProtocol
RtmAddRoute
RtmEnumerateGetNextRoute
MgmReleaseInterfaceOwnership
RtmDeleteRouteTable
RtmIsRoute
MgmInitialize
RtmGetNetworkCount
RtmDeleteRoute
RtmDequeueRouteChangeMessage

avicap32

AppCleanup
videoThunk32

avifil32

AVIStreamGetFrameOpen
AVIStreamLength
EditStreamSetNameA
AVIFileInit

msvfw32

ICLocate
DrawDibClose
DrawDibRealize
ICRemove

winmm

waveOutUnprepareHeader
mmioRenameW
midiOutGetErrorTextA
waveInGetID
joyGetDevCapsW
midiOutGetErrorTextW
mixerSetControlDetails
sndPlaySoundA

user32

LoadStringW
PostMessageW
ShowWindow
DialogBoxParamW
EndDialog
GetDlgItem
IsDlgButtonChecked
SetFocus
EnableWindow
GetDC
ReleaseDC
GetWindowRect
MessageBoxW
GetWindowLongW
SetWindowLongW
GetParent
LoadBitmapW
SendMessageW

gdi32

DeleteObject
CreateFontW
GetDeviceCaps

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegDeleteValueA
CryptReleaseContext
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExW

Sections

.text
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e93b0fa594d670a466cb6a5c504e254c

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

resutils

wsock32

msacm32

rtm

avicap32

avifil32

msvfw32

winmm

user32

gdi32

comdlg32

advapi32

Sections

.text Size: 123KB - Virtual size: 122KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 5KB - Virtual size: 12KB

.text
Size: 123KB - Virtual size: 122KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 5KB - Virtual size: 12KB