SecuriteInfo[.]com[.]Win32[.]KeyloggerX-gen[.]21639[.]22575 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.KeyloggerX-gen.21639.22575
Size

319KB
MD5

b8d8eb9a8cfed04b9624e9e3d8c2569d
SHA1

49fc38e83fe4905946e8a31e40603256c5ebf060
SHA256

838943f1ce7de236a0a633dd4a6675a65e5e5cbce86d2a1440ae307d58dee757
SHA512

6b4cc5d60007929b6edcbe2717d9c442690be245c96ebaed78793692c2d33d56006cc1aae088e1f2689555c1742bff921f5279aece4f8eb3452857e7fa063e90
SSDEEP

6144:15ddSORmAGqepnEsaZ3L+5TlvYrZ/7FWhlLno:15ddSo7eK0EZ/Cl7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.KeyloggerX-gen.21639.22575

Files

SecuriteInfo.com.Win32.KeyloggerX-gen.21639.22575
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ