Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.PWSX-gen.27494.exe
Resource
win7-20231020-en
General
-
Target
SecuriteInfo.com.Win32.PWSX-gen.27494.29811
-
Size
620KB
-
MD5
c8a831d4afc814f694d4ba49ed77dcc0
-
SHA1
68482ad646f684d2741886a76c3f719e9d42f481
-
SHA256
02dde64610d19f1d51a35f304691885db239dd187e2650d0071d26b3cf105240
-
SHA512
42cd0e1bde887c247dc8f3fced0964503f6c9bf38ed07535d568a8ddb1c047686c216420e91f630710bab827ef60863673aba6da2183945e51bdd09c183904bf
-
SSDEEP
12288:G3IU8S6eUdD6f4/3YRp36WYuwI8UsfmZCrldFcG4q4gcn:8ItSAdeTRVY7ks+mldFc+4g
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource SecuriteInfo.com.Win32.PWSX-gen.27494.29811
Files
-
SecuriteInfo.com.Win32.PWSX-gen.27494.29811.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 617KB - Virtual size: 617KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ