SecuriteInfo[.]com[.]Trojan-Spy[.]Agent[.]8758[.]2438 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Trojan-Spy.Agent.8758.2438
Size

2.9MB
MD5

9c1db87a1e6d1ce140105b13ffa1de6d
SHA1

e457771b73850522311ca3e94105d0c5f3035803
SHA256

baf3ff9116d5ee785672c8a8091a8c20fd6e861c5e69f61b7235f76617d44d46
SHA512

1397ddd4fc29ecc6b77a41eb2a3ef7da55d01355a80e6f33e0f6e779f843f0606b788ade013391dfea72c237745df703cb80beeb8ceca63753266f59bc5d2c77
SSDEEP

24576:5uyvgbrlQtbWTnhy4FioUc0gno17gG3YCslVWGkgFfsF8/4e3SZdwR7fTre8Oix8:YlQtiTtUcytYCYVWLNmSizeWVgUN/z4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan-Spy.Agent.8758.2438

Files

SecuriteInfo.com.Trojan-Spy.Agent.8758.2438
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 680KB - Virtual size: 680KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 472KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ