SecuriteInfo[.]com[.]Win32[.]TrojanX-gen[.]15174[.]23934 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.TrojanX-gen.15174.23934
Size

1.7MB
MD5

8fa23a40dd620ab00e9578da6cd0e1ec
SHA1

6fceacd52df9956025c5f3d81fea9488703a20e2
SHA256

cb5547ac9a9c7d0592092c2a0c47426c1f5ba40d6c7fcee5ca92862b9c687093
SHA512

e19fbd4295af006036696f77838eb52fde98ae808b67a15d52cab0e6914cf7c84c0c95085bc0b86b576cfbd9998ee4cb0c75cb12b82d2e0fefa0da2635d3f095
SSDEEP

49152:kG6+hhONELGUykX0u4MU4ylhXJk1lyBC7qkM52I:RvhG48uPU4+o3uNkU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.TrojanX-gen.15174.23934

Files

SecuriteInfo.com.Win32.TrojanX-gen.15174.23934
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

F:\DowLoad_SP\Autoupdate_New_Vesion6\Autoupdate\obj\Release\Autoupdate.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ