SecuriteInfo[.]com[.]Win32[.]TrojanX-gen[.]20301[.]17162[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.TrojanX-gen.20301.17162.dll
Size

33KB
MD5

676fbcee5b91a6e8938c58635984bd23
SHA1

c1a3acc74530976bb67cf6b7564f10a334f86b38
SHA256

73c2221bf1838312b7aab298a3058b97733faa2cb2135359e2be41943b100506
SHA512

d66814257d80aa1e3796ff3479b7f814da74f5adbe2263fa2dc32ec76659472a177c6aa4c5f78f95fdc1dd51117c07a16c04d2c96f63fd1dacb0066734a2d6d1
SSDEEP

768:OXtxiMayvOcC5+A5U5r67oDG0nNGZi402Ia6e0TxfuDnzfPJcKGVVcUJ:OXu+vC51ONkTV0ASVVc2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.TrojanX-gen.20301.17162.dll

Files

SecuriteInfo.com.Win32.TrojanX-gen.20301.17162.dll
.dll windows x86

64fbe8776a7560c834c27ef4325d2834

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_adjust_fdiv
free
_initterm
memset
memcpy
malloc

imm32

ImmGetConversionListW
ImmSetCompositionFontA
ImmConfigureIMEA
ImmSetCandidateWindow
ImmAssociateContext
ImmSetOpenStatus

kernel32

InitializeCriticalSection
VirtualAlloc
lstrlenW
WriteConsoleOutputAttribute
GetProcessPriorityBoost
RtlFillMemory
CreateNamedPipeA
EnumCalendarInfoW
GetLocalTime
AreFileApisANSI
Process32NextW
GlobalFlags

urlmon

HlinkNavigateString
CreateFormatEnumerator
WriteHitLogging
URLOpenPullStreamW
RegisterMediaTypes
RegisterBindStatusCallback
GetClassFileOrMime
URLDownloadA
CreateAsyncBindCtxEx

winspool.drv

DeletePrintProcessorA
DeletePrinterDataA
DeletePrinterDataExA
PrinterProperties
ord214

wsock32

getsockopt
WSAAsyncGetProtoByNumber
ord1117
ord1105
ord1106
connect
ord1110

msvfw32

ICDrawBegin
ICImageDecompress
ord2
DrawDibChangePalette
ICSeqCompressFrameEnd

avifil32

AVIStreamOpenFromFileA
AVIStreamLength
AVISaveVA

mpr

WNetDisconnectDialog1W
WNetGetProviderNameA
WNetGetUserA
MultinetGetConnectionPerformanceW
WNetAddConnection3W
WNetGetConnectionW
WNetUseConnectionW

Exports

Exports

HvTkcoed

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

64fbe8776a7560c834c27ef4325d2834

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

imm32

kernel32

urlmon

winspool.drv

wsock32

msvfw32

avifil32

mpr

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 8KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 8KB