SecuriteInfo[.]com[.]Trojan[.]Siggen5[.]14994[.]16492[.]7071[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.Siggen5.14994.16492.7071.exe
Size

1.2MB
MD5

04f28c1d173d4c5d86cdfefd2ccc44f4
SHA1

38b20484e9ce0b36d07792495074179fac5386f5
SHA256

e9fa1c9386b3a7f230aa8bdd6fd38add9aeaa9a07c29d14bd6bc07281faec05e
SHA512

b232ee32b247ab9221abba3dcf7d28b9a123bf2cef6c15d8493f38d6ac2c76e533e3292a5a2f97b02a9d445da316f469546238d7a411907744d57872575f9996
SSDEEP

24576:8aB4R521EeHVD9Z1K/slMStMIEZzLkN27pY:Xu/2fx6yMXLfO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.Siggen5.14994.16492.7071.exe

Files

SecuriteInfo.com.Trojan.Siggen5.14994.16492.7071.exe
.exe windows:5 windows x86 arch:x86

670f9d4ddece3fcb1e441ebb5c1a362e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32 winmm

SetParent �r

Sections

.text
Size: 484KB - Virtual size: 940KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp
Size: 492KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ