SecuriteInfo[.]com[.]SuspectFile[.]30394[.]20413

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.SuspectFile.30394.20413
Size

2.6MB
MD5

972eeb34c6cf3825116d2c77fb20e995
SHA1

2f67d42ee9b6ad8f114fd05f0cf7c3264d6c3bbc
SHA256

61aab209e7a13b2bad82a7fa49ed3c6edce683eb073a5caa935178e331992539
SHA512

5b2aea2f0149f54cbbacfb12bbeffee74894315bd2f4b2e4591035ede6ba0c5b46950f4bf453170b0b7cffac6601f0ab9004df5de19a5877b3c01ef7634e4e5d
SSDEEP

49152:WgChmt3dy/bzaE9VKz1lVe82NdmSKxsBd6rhPWIFdtOm+9:WgCot3dyj2E9VKz1lVe8CdmSesBd6BWN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.SuspectFile.30394.20413

Files

SecuriteInfo.com.SuspectFile.30394.20413
.exe windows:6 windows x86 arch:x86

380e40a7f7fb51e16aa124ffca38eecc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeEndPeriod
timeBeginPeriod
timeGetTime
PlaySoundW

advapi32

RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExA
RegCloseKey
InitializeSecurityDescriptor
RegCreateKeyExW
RegQueryValueExA
GetUserNameA
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
CryptAcquireContextW
CryptReleaseContext
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
RegSetValueExA
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW

gdi32

CreatePalette
SelectPalette
RealizePalette
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteObject
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
CreateEllipticRgn
SetDIBColorTable
CreateDIBSection
StretchBlt
SetPixel
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
GetBkColor
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
EnumFontFamiliesExW
DPtoLP
SetRectRgn
PatBlt
CreateRectRgnIndirect
CombineRgn
GetTextMetricsW
GetTextExtentPoint32W
CreateFontIndirectW
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetTextColor
GetTextFaceW
ExtTextOutW
TextOutW
MoveToEx
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
GetObjectW
SetBkColor
CreateBitmap
CopyMetaFileW
DeleteDC
GetDeviceCaps
CreateICW
Polyline
CreateRoundRectRgn
LPtoDP
Rectangle
SetViewportExtEx
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetRgnBox

shlwapi

PathRemoveFileSpecW
PathIsUNCW
StrRChrA
PathAppendA
PathAppendW
PathFileExistsA
PathStripToRootW
PathFindExtensionW
StrFormatKBSizeW
PathFindFileNameW

shell32

SHGetFileInfoW
SHGetFolderPathW
SHGetFolderPathA
ShellExecuteW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHBrowseForFolderW
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetPathFromIDListW

gdiplus

GdipBitmapLockBits
GdipBitmapUnlockBits
GdipSetInterpolationMode
GdipCreateBitmapFromScan0
GdiplusShutdown
GdiplusStartup
GdipFree
GdipAlloc
GdipDisposeImage
GdipCloneImage
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipDrawImageI
GdipCreateFromHDC
GdipDeleteGraphics

imagehlp

MapFileAndCheckSumW
MapFileAndCheckSumA

iphlpapi

GetAdaptersInfo

wininet

InternetOpenW
InternetCloseHandle
InternetReadFile
InternetOpenUrlW
InternetCanonicalizeUrlW
InternetGetConnectedState

version

GetFileVersionInfoW
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoSizeW

urlmon

URLDownloadToFileW

kernel32

GetCurrentDirectoryW
DosDateTimeToFileTime
CreateDirectoryW
SetFileTime
GetFileInformationByHandle
GetLocalTime
FileTimeToDosDateTime
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
FindNextFileW
GetComputerNameA
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
SetFilePointerEx
GetConsoleCP
WideCharToMultiByte
ReadConsoleW
GetConsoleMode
EnumSystemLocalesW
IsValidLocale
GetTimeZoneInformation
GetStdHandle
SetStdHandle
VirtualAlloc
GetCommandLineW
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
HeapQueryInformation
GetModuleHandleExW
ExitProcess
RtlUnwind
GetCPInfo
GetStringTypeW
LCMapStringW
SwitchToThread
OutputDebugStringW
InitializeSListHead
GetSystemTimeAsFileTime
GetStartupInfoW
IsProcessorFeaturePresent
TerminateProcess
UnhandledExceptionFilter
GetUserDefaultLCID
GetVersionExW
GetProfileIntW
GetWindowsDirectoryW
FindResourceExW
lstrcpyW
GetFileTime
GetFileSizeEx
GetSystemTime
VerifyVersionInfoW
VerSetConditionMask
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
GetCurrentThreadId
OutputDebugStringA
GetVersionExA
SetThreadPriority
CreateEventW
GlobalFlags
SetFilePointer
lstrcmpiW
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
ReadProcessMemory
GetThreadContext
SuspendThread
GetEnvironmentVariableA
LeaveCriticalSection
EnterCriticalSection
GlobalMemoryStatusEx
GetFileType
FlushFileBuffers
GetUserDefaultUILanguage
GetModuleFileNameA
GetCurrentDirectoryA
SetLastError
GetEnvironmentVariableW
GetSystemInfo
SetCurrentDirectoryW
GetFileAttributesExW
CopyFileW
GetTempFileNameW
WriteFile
GetTickCount
QueryPerformanceCounter
QueryPerformanceFrequency
CreateSemaphoreW
GetProcessTimes
FindFirstFileW
ReadFile
GetFileSize
FindClose
FindNextFileA
FindFirstFileExA
IsWow64Process
OpenProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
CreateFileW
WaitForSingleObject
TerminateThread
ResumeThread
CreateThread
GetExitCodeThread
Sleep
InitializeCriticalSection
FreeLibrary
SetUnhandledExceptionFilter
GetProcAddress
LoadLibraryW
IsDebuggerPresent
SetProcessDEPPolicy
GetSystemDirectoryW
GetLastError
MoveFileExW
GetFileAttributesW
SetFileAttributesW
GetTempPathW
MultiByteToWideChar
CloseHandle
DeleteFileW
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
FindResourceW
LoadResource
LockResource
SizeofResource
GetModuleFileNameW
GetModuleHandleW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
GetLocaleInfoW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeResource
SystemTimeToFileTime
EncodePointer
GlobalGetAtomNameW
lstrcmpA
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CompareStringW
InitializeCriticalSectionAndSpinCount
SystemTimeToTzSpecificLocalTime
LoadLibraryA
GetModuleHandleA
VirtualProtect
VirtualQuery
LoadLibraryExA
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
DuplicateHandle
GlobalFree
LocalFree
MulDiv
FormatMessageW
SearchPathW

user32

GetUpdateRect
IsClipboardFormatAvailable
CharUpperBuffW
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
SubtractRect
DefFrameProcW
DestroyMenu
RegisterClipboardFormatW
ModifyMenuW
GetDoubleClickTime
SetMenuDefaultItem
LockWindowUpdate
CopyAcceleratorTableW
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
PostThreadMessageW
GetComboBoxInfo
ReuseDDElParam
DestroyCursor
GetWindowRgn
UnpackDDElParam
EnumDisplayDevicesW
GetSystemMetrics
SetForegroundWindow
FindWindowW
GetWindowLongW
GetWindowTextW
BringWindowToTop
SetCursor
GetAsyncKeyState
SetWindowPos
PostQuitMessage
GetClientRect
DefWindowProcW
DestroyWindow
DrawTextA
EndPaint
BeginPaint
DialogBoxParamW
EnableMenuItem
GetMenu
UpdateWindow
InvalidateRect
ShowWindow
SetLayeredWindowAttributes
GetDesktopWindow
CreateWindowExW
RegisterClassExW
LoadIconW
LoadCursorW
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
GetMessageW
LoadAcceleratorsW
LoadStringW
GetDlgItemTextW
IsDlgButtonChecked
CheckDlgButton
SetDlgItemTextW
EndDialog
EnumDisplayMonitors
OffsetRect
EqualRect
CopyRect
UnionRect
SetRect
GetMonitorInfoW
wsprintfW
GetActiveWindow
MessageBoxW
CreateMenu
InsertMenuItemW
MonitorFromPoint
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
SendMessageW
IsWindow
SetFocus
GetFocus
EnableWindow
IsWindowEnabled
GetParent
UnhookWindowsHookEx
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetWindowThreadProcessId
GetLastActivePopup
GetWindowTextLengthW
CheckMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
RegisterWindowMessageW
PeekMessageW
GetMessagePos
GetMessageTime
PostMessageW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
IsMenu
IsChild
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
IsIconic
GetDlgItem
GetDlgCtrlID
GetKeyState
GetCapture
SetMenu
TrackPopupMenu
SetActiveWindow
GetForegroundWindow
ValidateRect
RedrawWindow
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropW
GetPropW
RemovePropW
GetWindowRect
AdjustWindowRectEx
ScreenToClient
MapWindowPoints
PtInRect
SetWindowLongW
GetClassLongW
GetClassNameW
GetTopWindow
GetWindow
SetWindowsHookExW
CallNextHookEx
SetScrollInfo
GetScrollInfo
WinHelpW
MonitorFromWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CreateDialogIndirectParamW
GetNextDlgTabItem
DestroyIcon
CharUpperW
ClientToScreen
RealChildWindowFromPoint
GetCursorPos
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetWindowDC
FillRect
UpdateLayeredWindow
GetMenuItemInfoW
InflateRect
SystemParametersInfoW
CopyImage
SendDlgItemMessageA
SetRectEmpty
MapDialogRect
IntersectRect
TrackMouseEvent
LoadImageW
ShowOwnedPopups
DeleteMenu
SetTimer
KillTimer
CreatePopupMenu
GetMenuDefaultItem
GetNextDlgGroupItem
SetCapture
ReleaseCapture
WindowFromPoint
DrawFocusRect
IsRectEmpty
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
MapVirtualKeyW
GetKeyNameTextW
LoadMenuW
SetClassLongW
SetWindowRgn
SetParent
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
IsZoomed
GetSystemMenu
SetCursorPos
CopyIcon
FrameRect
DrawIcon

ole32

OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoInitialize
CoDisconnectObject
RevokeDragDrop
RegisterDragDrop
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoSetProxyBlanket
CoInitializeEx
CoUninitialize
CoCreateInstance

oleaut32

VarBstrFromDate
VariantClear
VariantInit
SystemTimeToVariantTime
VariantTimeToSystemTime
SysFreeString
SysAllocString
VariantChangeType
VariantCopy
LoadTypeLi
SysAllocStringLen
SysStringLen

psapi

EnumProcessModules
GetModuleFileNameExA
GetModuleFileNameExW
EnumProcesses
GetModuleBaseNameW

msimg32

TransparentBlt
AlphaBlend

uxtheme

IsThemeBackgroundPartiallyTransparent
GetThemeSysColor
GetThemePartSize
IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetWindowTheme

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 380KB - Virtual size: 379KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 496KB - Virtual size: 565KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

380e40a7f7fb51e16aa124ffca38eecc

Headers

DLL Characteristics

File Characteristics

Imports

winmm

advapi32

gdi32

shlwapi

shell32

gdiplus

imagehlp

iphlpapi

wininet

version

urlmon

kernel32

user32

ole32

oleaut32

psapi

msimg32

uxtheme

oleacc

imm32

winspool.drv

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 380KB - Virtual size: 379KB

.data Size: 496KB - Virtual size: 565KB

.rsrc Size: 58KB - Virtual size: 58KB

.reloc Size: 140KB - Virtual size: 140KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 380KB - Virtual size: 379KB

.data
Size: 496KB - Virtual size: 565KB

.rsrc
Size: 58KB - Virtual size: 58KB

.reloc
Size: 140KB - Virtual size: 140KB