SecuriteInfo[.]com[.]Trojan[.]KeyloggerNET[.]54[.]10231[.]6973 | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.KeyloggerNET.54.10231.6973
Size

367KB
MD5

d414eca1e374dac20dff6822d0793f84
SHA1

5f16530c1115f0422d152abc96974d04695a66f8
SHA256

84dd2a034d3c9d53d216198cb05f2d5fc65ad7dac487915196eda622a997bb05
SHA512

359d29279028a741f45ef760e6e7b191de73d35739926368da1f1f683f55a7e4c3ca3b76ff23042a1b2378227d2b8a88936baf95c4f81077cf351b5d76fa684d
SSDEEP

6144:I5OazRkvfvYVx96Aq9BTEWVCueYOtYYE2Odtyqd72fgQQD:I5OazyHYVx9k9+uZlYrOiqoc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.KeyloggerNET.54.10231.6973

Files

SecuriteInfo.com.Trojan.KeyloggerNET.54.10231.6973
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 327KB - Virtual size: 327KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ