SecuriteInfo[.]com[.]TScope[.]Malware-Cryptor[.]SB[.]18386[.]16880 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.TScope.Malware-Cryptor.SB.18386.16880
Size

173KB
MD5

58236993dfa73c413b42aec931becbca
SHA1

d2b64b1d976a0c8f18bfdaf7d3faf470620a7439
SHA256

8d442644200137a8da0bcfd1df98d075c49968e53bf61a9c5de4f344bc32c4ae
SHA512

45aafc1a37f4bb02c2ab9ce9bb06901450fd29b1dcb8d6cb8755858af4ea7ec85b9f3bb483c5c9eb831d6f3b63389cd83d77063bdb514a8b568ef2439691482c
SSDEEP

3072:i90ZmgTy38PqCjhwum2LT2de2KW7Li6OD8AET+QLBC7dcc7SKLe0Xs5j:i900YqGi2WIULi6rAyLk6c7SS85j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.TScope.Malware-Cryptor.SB.18386.16880

Files

SecuriteInfo.com.TScope.Malware-Cryptor.SB.18386.16880
.exe windows:4 windows x86

500ff1538958cc73738bf0c262a1773f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA

user32

MessageBoxA

Sections

7242244
Size: 111KB - Virtual size: 420KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5649154
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE