SecuriteInfo[.]com[.]HEUR[.]24003[.]28685 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.HEUR.24003.28685
Size

11KB
MD5

878daa0df513668699b9178dfdec942b
SHA1

7da37418deff594fa2416304bb3d2cfb90d5061b
SHA256

b9172b4c3dfd36865503114aa1c9f7e51c6c3b221e2e8e040f5bdb5df6291268
SHA512

72e4ca1ee3f61d4993e601caa880eebbd924741aa16ffd65bd875833570f0f446457b1c84cb10bbf2261013b1552f4413007f445be963fb9f43cb6c1a9eaf6ee
SSDEEP

192:ntuUXLGw1BxOMK9N99PhUCtc0hhIXQHQp:tfD1raawcs6gwp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.HEUR.24003.28685

Files

SecuriteInfo.com.HEUR.24003.28685
.exe windows x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress

Sections

pec1
Size: 7KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pec2
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ