SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]29465[.]30884 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.29465.30884
Size

545KB
MD5

002c5d2f53c99b7028209144bb5c0b0b
SHA1

ba3d2a41967c6d317cb8d24e0ab22d6bedc0dbf9
SHA256

b53da778b0496c07c9ce9532c3a127f8e9cf08fc5d4b7d81a5bff05823deb28d
SHA512

4b23ae4e8516aa47d55a74a6d89f6c972e43e7b006684f3a8fff6edc352a2ab4aff93e0d7dbe12e0ed3d42aa4bf286f47a4cd1166ca0d3b267d0d7483b71466e
SSDEEP

12288:d8oUHnHwSkVS17ffisZZIjQdSOLm17bn+46h5BC4nS:elnHtkVU7PI0S2sTMC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.PWSX-gen.29465.30884

Files

SecuriteInfo.com.Win32.PWSX-gen.29465.30884
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 542KB - Virtual size: 542KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ