SecuriteInfo[.]com[.]Trojan[.]GenericKD[.]61557131[.]21738[.]8271[.]exe | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.GenericKD.61557131.21738.8271.exe
Size

3.8MB
MD5

c6e556ee089b70c660ab0be7c98e4473
SHA1

f442d95aca109dcd6b563288161a8698a7a4bc4c
SHA256

e5061b204babd5741ed8e331ca9daac39b6aa1f96d81b8562e8ade554224b1a8
SHA512

cac6e60838ad7b74abe1ff493c45d5eae07cf925afaa10af411c2c3c23a9b1e08ec736c72f53b31ea7ebf968b4809fd6a291e3033f0aa66875e8a0a7d31241f8
SSDEEP

98304:V2aZMV19+dg8ncRLSvycCIPe68C9/84Y80OMcP1PGqwUq:V2algqc/cJPV9PYPOMcP1PGqwUq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.GenericKD.61557131.21738.8271.exe

Files

SecuriteInfo.com.Trojan.GenericKD.61557131.21738.8271.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Yky
Size: - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.+g^
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DJi
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ