SecuriteInfo[.]com[.]Trojan[.]Occamy[.]22857[.]3904[.]exe

General

Target

SecuriteInfo.com.Trojan.Occamy.22857.3904.exe
Size

53KB
MD5

aaaf628976b16c4baf346ee1d12c3cb4
SHA1

e9a9330ec3a4d3bd38d81f218705718e5fd1cb78
SHA256

fa1a4cbeb6a8d418a693bf4fb21fc219f76a8590e162346a4008b3adff3882c6
SHA512

5c7ee0dfc6a0ec4c3d21bdfcd5aec25c39adb23f8109dfe24c935ba8de38a16e9dcd515b63bc29b4898bc2a2acf932bdd295c0729ed7f45d5b86c659ad23a5fd
SSDEEP

768:abStznuZ69G4JzKdtOjpQ/XGJXMoOUlp3ShfkWZO:aSTuZ6FYAjp62GoOUz8/O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.Occamy.22857.3904.exe

Files

SecuriteInfo.com.Trojan.Occamy.22857.3904.exe
.exe windows x86

925d80d171642d26f889ad8a1883ec48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
CloseHandle
GetFileSize
CreateFileA
SetFileAttributesA
ReadFile
VirtualAlloc
WriteProcessMemory
ResumeThread
SuspendThread
CreateProcessA
WriteFile
ReadProcessMemory
GetFileAttributesA
VirtualFree
UnhandledExceptionFilter
GetModuleFileNameA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
LCMapStringA
MultiByteToWideChar
LCMapStringW
LoadLibraryA
GetProcAddress
SetStdHandle
HeapReAlloc
HeapAlloc
GetACP
GetCPInfo
GetOEMCP
GetCurrentProcess
SetFilePointer
GetCommandLineA
_llseek
GetLastError
RtlUnwind
HeapFree
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
TerminateProcess
HeapCreate
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetFileType
SetHandleCount
GetStdHandle
HeapDestroy

user32

SendDlgItemMessageA
EndDialog
KillTimer
DialogBoxParamA
SendMessageA
LoadIconA
EnableWindow
SetWindowLongA
SetWindowTextA
RedrawWindow
SetDlgItemTextA
MessageBoxA
CallWindowProcA
LoadCursorA
SetCursor
SetTimer
GetDlgItem
ShowWindow

shell32

ShellExecuteA
DragQueryFileA

gdi32

GetObjectA
GetStockObject
CreateFontIndirectA
SetBkMode
SetTextColor

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

925d80d171642d26f889ad8a1883ec48

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 24KB - Virtual size: 27KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 24KB - Virtual size: 27KB