SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]20451[.]3420[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.20451.3420.dll
Size

11KB
MD5

2b78b8d4e6201e03a165a83aef558ed7
SHA1

fdfbe52987e59e49a3360fa84a22c67b63331676
SHA256

290538f26668edcb88c85e02ee5302f6cfc32ad808016d1a39b4775cab376a8b
SHA512

e32facd14d8c29ba22f28acda5799b168185b829d887e24eaceaffc70a1c10077a9d4607edac5eb480dad913f2815277dac8a466bc1db38288bc0a63a7b018ac
SSDEEP

192:lTdoFSrxLurGrTvMkrBFnowz+bq3/vXT+z:lTmFSfrbMkV5z+be3T+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.PWSX-gen.20451.3420.dll

Files

SecuriteInfo.com.Win32.PWSX-gen.20451.3420.dll
.dll windows x86

52c90c6741354aad00af85840dd1c9c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

free
_adjust_fdiv
malloc
_initterm

shlwapi

SHDeleteValueA
PathRenameExtensionA
PathFindExtensionW
SHGetValueA

kernel32

FindResourceW
LocalFree
Toolhelp32ReadProcessMemory
SetEndOfFile
GetCompressedFileSizeW
GetConsoleCursorInfo
VirtualAlloc
VirtualFree
GetModuleHandleExW
LoadResource
LockResource
SizeofResource

mswsock

GetNameByTypeW
getnetbyname
EnumProtocolsA
sethostname
GetAcceptExSockaddrs

mapi32

ord78
ord159
ord138
ord171
ord175

comdlg32

ReplaceTextA
ChooseFontW
PrintDlgW
PrintDlgExA
GetSaveFileNameA
ChooseColorA

rtm

RtmBlockSetRouteEnable
RtmDeleteRouteTable

crypt32

CertFindRDNAttr
CertAddEnhancedKeyUsageIdentifier
CertNameToStrA

winmm

CloseDriver
waveOutGetID
midiOutGetVolume
mmGetCurrentTask
mixerGetLineControlsW
midiInGetNumDevs

msacm32

acmFormatTagEnumA
acmStreamUnprepareHeader
acmStreamClose
acmDriverPriority
acmFormatChooseW
acmStreamMessage
acmDriverRemove

Exports

Exports

HvTkcoed

Sections

.text
Size: 1024B - Virtual size: 1021B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52c90c6741354aad00af85840dd1c9c8

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

shlwapi

kernel32

mswsock

mapi32

comdlg32

rtm

crypt32

winmm

msacm32

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 1021B

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 52B

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 512B - Virtual size: 152B

.text
Size: 1024B - Virtual size: 1021B

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 52B

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 512B - Virtual size: 152B