SecuriteInfo[.]com[.]Variant[.]Jaik[.]154063[.]7781[.]25867

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Jaik.154063.7781.25867
Size

255KB
MD5

33b7c1bc97656d8ba4cd3429e3414b66
SHA1

df1ca7bf6d41beccd45a848973821d35a689b4ed
SHA256

f2e515d59f235f0492937680ce3aeab45f665e84bb93af43b4d8255145c4f9ec
SHA512

e977c263c2f4a5217be53d95a5ea3e1eec438d394bac672f7d6aba4fe8a9bcbb83fb4353640e93a4b2be1118be3612000c820bde76ab22338564aaf1302af739
SSDEEP

6144:ir8XHUWcw6z3qZYbN/Skh4KNC8zdmBgFxYnun/2uFLZiEzlp:iAXHUPw6z3qZYb5SkhNNC8zdm+YsuuFL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Variant.Jaik.154063.7781.25867

Files

SecuriteInfo.com.Variant.Jaik.154063.7781.25867
.dll windows x86

cf54381201af2fb7b13ce5169af522f8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualProtect
VirtualFree
GetModuleHandleW
GetProcAddress
EnumSystemCodePagesW
WriteConsoleW
CloseHandle
CreateFileW
OutputDebugStringW
ReadConsoleW
ReadFile
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleCP
WriteFile
FlushFileBuffers
SetStdHandle
HeapReAlloc
HeapSize
GetStringTypeW
SetConsoleCtrlHandler
GetFileType
GetStdHandle
GetProcessHeap
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
EncodePointer
RaiseException
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
GetCurrentThread
HeapAlloc
HeapFree
FindClose
DecodePointer

rtutils

RouterLogDeregisterA
RouterGetErrorStringA
MprSetupProtocolEnum
TraceVprintfExA
RouterLogDeregisterW
RouterLogEventDataA

wsnmp32

ord605
ord901
ord203
ord300
ord402
ord100

msi

ord62
ord51
ord103
ord129
ord141
ord115
ord137
ord9

ole32

CreateOleAdviseHolder
OleSetContainedObject
SNB_UserMarshal
GetClassFile

user32

WINNLSEnableIME
CreateMDIWindowA
RegisterClassA
SetActiveWindow
GetMenuContextHelpId

mswsock

rresvport
rexec
SetServiceA
s_perror
inet_network

Exports

Exports

JKbtgdfd
_AllocateExecutableMemory@4
_AllocateMemory@4
_AllocateReadOnlyMemory@4
_ChangeMemoryProtection@16
_CompareMemory@12
_FindPattern@16
_FreeMemory@4
_GCopyMemory@12
_GFillMemory@12
_GMoveMemory@12
_GZeroMemory@8
_ReadMemory@12
_WriteMemory@12

Sections

.text
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf54381201af2fb7b13ce5169af522f8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

rtutils

wsnmp32

msi

ole32

user32

mswsock

Exports

Exports

Sections

.text Size: 207KB - Virtual size: 206KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 3KB - Virtual size: 7KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 207KB - Virtual size: 206KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 3KB - Virtual size: 7KB

.reloc
Size: 8KB - Virtual size: 8KB