SecuriteInfo[.]com[.]Win32[.]RATX-gen[.]5138[.]32043 | Triage

Sharing

General

Target

SecuriteInfo.com.Win32.RATX-gen.5138.32043
Size

782KB
MD5

9bb7f3b0c32cc58c27054de628206cee
SHA1

5fd5e46dc9a53b5af49fcac45f52d3ccd60114b4
SHA256

a999fa0b2c139c85ebb6a33cc1785777a333ee9b491ca696d776887f6d0400bc
SHA512

fb21b4e0c1466c16e75b28e716c13b000c3a5a093e1693f73806520522833618904ec5968f3c57a9264159002f34738c78e356eb06aaccd8ba95f047198e500e
SSDEEP

12288:DSprtFnXkIxN/9PCfsC6jf0ftLoydvr8yj2+/DV+3:6pF0AN/S2fstsyw+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.RATX-gen.5138.32043

Files

SecuriteInfo.com.Win32.RATX-gen.5138.32043
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 780KB - Virtual size: 779KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ