SecuriteInfo[.]com[.]Variant[.]Lazy[.]324511[.]3810[.]1323

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Lazy.324511.3810.1323
Size

87KB
MD5

e3964adcb233264f26a70dd25772a0f5
SHA1

3b222521852d3ef91010bd56bbf90982af40d903
SHA256

e5d8bd92a78f8498c5a7c48d4e36277d85243e1ad99b9d79b6c68514fff8182f
SHA512

2d0fb4c05228a3b9a7a523b0e7cd43f04fa390fc149159a9653a9316e01e2e636ca92c73cf360a59022d4e7fac537fe13352b53ba547996094bd312204366f09
SSDEEP

1536:1alU6kLe15mrhbCiVqAGeiqhR29VbReX8MNhpHD6+J2rZeydZrVksWNcdeDWJyZ:1az1UBZAAIqOkX8MNrD61fr3eaJyZ

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.Variant.Lazy.324511.3810.1323
.exe windows x86

8608a79c31eb91a63f9876736636a3f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetProperty
ImmCreateSoftKeyboard
ImmGetDescriptionA
ImmGetCandidateListA

kernel32

WriteConsoleW
GetLocaleInfoW
MultiByteToWideChar
GetDateFormatW
FileTimeToSystemTime
GetLastError
CreateFileMappingA
lstrlenW
FormatMessageW
FreeLibrary
UnmapViewOfFile
MapViewOfFile
VirtualFree
VirtualAlloc
GetFileType
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetFilePointerEx
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
DecodePointer
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
GetStringTypeW
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
GetStdHandle
RaiseException
EncodePointer
LoadLibraryExW
GetProcAddress
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
GetProcessHeap
HeapFree
HeapReAlloc
CloseHandle
WriteFile
CreateFileW
CreateFileA
HeapSize
WideCharToMultiByte
LCMapStringW
HeapAlloc
SetLastError
LeaveCriticalSection
EnterCriticalSection
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcess
TerminateProcess
RtlUnwind

rpcrt4

NdrNonConformantStringMarshall

setupapi

SetupDiBuildClassInfoList
SetupDiGetActualSectionToInstallW
SetupDiEnumDeviceInterfaces

winmm

waveOutGetDevCapsA
waveInReset
mixerGetID

crypt32

CertNameToStrW
CertGetNameStringW
CertGetPublicKeyLength
CertGetCertificateContextProperty
CryptMsgVerifyCountersignatureEncoded
CryptHashToBeSigned
CryptFormatObject
CryptFindOIDInfo

wininet

InternetAutodial
CommitUrlCacheEntryW

shell32

SHGetSpecialFolderPathA
SHFormatDrive
SHGetSpecialFolderLocation
ShellExecuteW

mpr

MultinetGetConnectionPerformanceA
WNetCancelConnection2A
WNetCancelConnectionA
WNetGetConnectionW
WNetDisconnectDialog

user32

SendMessageW
LoadStringW

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8608a79c31eb91a63f9876736636a3f1

Headers

DLL Characteristics

File Characteristics

Imports

imm32

kernel32

rpcrt4

setupapi

winmm

crypt32

wininet

shell32

mpr

user32

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 25KB - Virtual size: 25KB

.data Size: 3KB - Virtual size: 5KB

.rsrc Size: 512B - Virtual size: 480B

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 25KB - Virtual size: 25KB

.data
Size: 3KB - Virtual size: 5KB

.rsrc
Size: 512B - Virtual size: 480B