Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.PWSX-gen.13081.820.exe
Resource
win7-20230220-en
General
-
Target
SecuriteInfo.com.Win32.PWSX-gen.13081.820.exe
-
Size
589KB
-
MD5
5ad485bc9b0343ccf46b08f623c33dc8
-
SHA1
0158790ba17a18edb16e9228ac4d4e2bda8b0b83
-
SHA256
854e56653a2b80660cffe69f84e3d3d956667c9176ab80de7e5d02959bfde099
-
SHA512
bb070b6f8a37fa77e452bfde6b389aae252ebb2cb0dd20b0fb20116bfa5170061cf8d9d0c58b7ddd795918cd2393f1f9765f7f5b3b3ecc481306d82923299741
-
SSDEEP
12288:A8whh2Y4Y06QK0XmevZA5RSRU1IayhkEvOif+LxC0:A8whh27XrvW5RIUWayeEvVmV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource SecuriteInfo.com.Win32.PWSX-gen.13081.820.exe
Files
-
SecuriteInfo.com.Win32.PWSX-gen.13081.820.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 587KB - Virtual size: 586KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 888B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ