SecuriteInfo[.]com[.]Win32[.]RATX-gen[.]3335[.]11028 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.RATX-gen.3335.11028
Size

505KB
MD5

819efccd1afb4ae62170f52a54f62ea9
SHA1

bb19bb66f5e85871ef3c5e7da40f0199341a462c
SHA256

c5de366fb77c67ffc4f8daa348f10e4dbd9e68287427943c25a7112b467b89eb
SHA512

53c477992a65a359032ee25bb3aba08234cfb47bfba5e3af301831389cc7b67ae5e46cae6032951c09479a5c077936837efab018a76489dda5fc1fe1d2af0d1f
SSDEEP

12288:i88spTz5nBm8xsKG2UiyIMwAcK8TXCfgSK7uTnY+6ji6uB4C6QBJOCpp:v5nJdGFifac3cTP6duBp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.RATX-gen.3335.11028

Files

SecuriteInfo.com.Win32.RATX-gen.3335.11028
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 502KB - Virtual size: 502KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ