SecuriteInfo[.]com[.]Adware[.]Agent[.]TNL[.]2484[.]28990[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Adware.Agent.TNL.2484.28990.exe
Size

1.4MB
MD5

9cc31673b0a9c696a9e33b0cf38c94f0
SHA1

484f95d2eaea92a22c5510ec539ce75ca9da9772
SHA256

a99b42f8fc67f5111c30903148c93548fe6a124ea6d7e533c223c5e54cd024d6
SHA512

59db8b687af315c7b8014842142ff4c97e8f5996331a184a4c2e22c455748a897e8e050c5f592cfa9ea5baa419bd81efc4fcd5072ede32bb257da87723e387a8
SSDEEP

24576:ZYjvTJ1PBpKnnIU9kp0RCXgwF0o8CDvYLIZr3R+TM:ZEvT3BeIqkdF0Fn884

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Adware.Agent.TNL.2484.28990.exe
.exe windows x86

0bac8921daf0b5bda11471e860ca9169

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExA
LocalAlloc
lstrlenA
FormatMessageA
SizeofResource
LockResource
LoadResource
FindResourceA
GetModuleHandleA
DeleteFileA
Sleep
CloseHandle
WaitForMultipleObjects
GetWindowsDirectoryA
GetProcAddress
LoadLibraryA
GetTempFileNameA
GetTempPathA
CreateEventA
OpenProcess
GetCurrentProcessId
GetModuleFileNameA
SetEndOfFile
WritePrivateProfileStringA
GetLastError
GetVersionExA
FreeLibrary
LocalFree
UnmapViewOfFile
GetComputerNameA
GetTickCount
MapViewOfFile
CreateFileMappingA
Process32Next
Process32First
CreateToolhelp32Snapshot
WriteFile
SetFilePointer
CreateFileA
GetLocalTime
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
HeapFree
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetCPInfo
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
SetUnhandledExceptionFilter
FlushFileBuffers
TerminateProcess
GetCurrentProcess
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
VirtualQuery
GetLocaleInfoA
VirtualProtect
GetSystemInfo
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
HeapSize
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
SetStdHandle
ReadFile
GetLocaleInfoW

user32

UnhookWindowsHookEx
wsprintfA
SetWindowsHookExA

advapi32

SetSecurityInfo
RegOpenKeyExA
RegCloseKey
InitializeAcl

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bac8921daf0b5bda11471e860ca9169

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 84KB - Virtual size: 81KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 8KB - Virtual size: 10KB

.rsrc Size: 44KB - Virtual size: 42KB

.text
Size: 84KB - Virtual size: 81KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 8KB - Virtual size: 10KB

.rsrc
Size: 44KB - Virtual size: 42KB