Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.TrojanX-gen.13038.29708.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.TrojanX-gen.13038.29708.exe
Resource
win10v2004-20231020-en
General
-
Target
SecuriteInfo.com.Win32.TrojanX-gen.13038.29708.exe
-
Size
763KB
-
MD5
f4e9acbb76a17418e01d5c2ba397aeff
-
SHA1
115d6837f1b7a14041ce446901e642f668eed9fa
-
SHA256
f9abeebda334e6ff506326bb578cba3b1e3309b04641a3cf0adb4302a03c476e
-
SHA512
c8fabc8d3d45474f036f12079790fe0277f97eb1807b522ebe3b57192465d783968f31a726f55ede0db50be6dc8b3fdc1c2a147236cb252a9d23d60887d29d5b
-
SSDEEP
12288:sUA7NEE6jD/pLXGkJl8Me0rllpJIPdOjwX7IHpBaQo3wMPQeLgH0JtvL:eEtD/F2k78erllDIPzqpBwwLZ49
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource SecuriteInfo.com.Win32.TrojanX-gen.13038.29708.exe
Files
-
SecuriteInfo.com.Win32.TrojanX-gen.13038.29708.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 760KB - Virtual size: 760KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ