SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]19836[.]13671[.]dll

General

Target

SecuriteInfo.com.Win32.PWSX-gen.19836.13671.dll
Size

34KB
MD5

1ca761b532aa363ae45b55f698e4eec7
SHA1

cf7c5106ab7834f5e1cb3e336d343f2f243d579e
SHA256

216054f0cb4a17285cc37390320665e38c48f96d6461496604c5bb855b554c19
SHA512

2609333e9bb09c4fdfdefa1a5f97eeaacbb9a9995c05c64cf4cd17192d23bffa557a6e281ebf2288629aea55928b4ff4d3dc0b4372f100f9cb510f0df18ceda2
SSDEEP

768:J9Q3CRLwXVuvCyRS5V5i3QErz8nd/crec2Za4joxI7jnnPL5FLI+U1MQxKDIrHu:J9Q3euuvCyofk8VYEvj5FLI+U1MQxKDj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.PWSX-gen.19836.13671.dll

Files

SecuriteInfo.com.Win32.PWSX-gen.19836.13671.dll
.dll windows x86

59fd9007e1ae0a333e9e71b3ddb860db

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

malloc
_initterm
memset
free
_adjust_fdiv
memcpy

shlwapi

SHDeleteEmptyKeyW
ChrCmpIA
PathSearchAndQualifyA
PathFindExtensionW

kernel32

lstrlenW
VirtualAlloc
InitializeCriticalSection

urlmon

RegisterBindStatusCallback
CoInternetCreateZoneManager
RegisterFormatEnumerator
FindMediaTypeClass
HlinkGoForward
URLOpenStreamA

winmm

PlaySoundA
joyGetThreshold
auxGetDevCapsW
joyReleaseCapture
CloseDriver
waveInGetDevCapsW
midiOutReset
midiStreamProperty

gdi32

ExcludeClipRect
SetWindowOrgEx
GetDIBColorTable
SetPolyFillMode
CopyEnhMetaFileA
PolyPolygon

mapi32

ord22
ord23
ord241
ord29
ord19

wininet

InternetAutodialHangup
RunOnceUrlCache
InternetAutodial

ws2_32

shutdown
WSASendTo
getsockopt
WSALookupServiceBeginW
WSASetServiceA
WSASocketA

pdh

PdhGetCounterInfoW
PdhVbIsGoodStatus
PdhParseCounterPathA
PdhOpenQueryW
PdhUpdateLogFileCatalog
PdhCollectQueryDataEx

Exports

Exports

HvTkcoed

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

59fd9007e1ae0a333e9e71b3ddb860db

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

shlwapi

kernel32

urlmon

winmm

gdi32

mapi32

wininet

ws2_32

pdh

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 8KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 8KB