SecuriteInfo[.]com[.]Trojan[.]MSIL[.]Injector[.]5704[.]12472 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.MSIL.Injector.5704.12472
Size

984KB
MD5

ba228a04f36fa8ea33d5daf7b701d938
SHA1

4fc576870a1aafc6d2a02fd16f7fefaaf3750aae
SHA256

33500bc215bc41cff3023deb0ff58089f3349a3d2948de2f2b3bac1a1a7b0306
SHA512

e46357d8dd0d4d44c55f9c9f837a41e9cd7aefc2baec2d469ecfa06af1f8f877f82637f5570f1f7fd26561fca36cbdcac4680b7a6f1b0fb6b8391354cd75b99e
SSDEEP

12288:5hWWc1WdDxv/3BhG9FdKlK9/PJy+mGVfNItEqrOWb+CYxIoa+:5hWWc1OxUFdKlK9/xkGJmWWT+3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.MSIL.Injector.5704.12472

Files

SecuriteInfo.com.Trojan.MSIL.Injector.5704.12472
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 650KB - Virtual size: 649KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

6w1UeBZd
Size: 328KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ