SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]8396[.]18973 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.8396.18973
Size

732KB
MD5

4b829ab8bed642e314aff42aba75220e
SHA1

05406d75c80b736ab51239c477abcac3f066b9c8
SHA256

46c5c413b31c08c49b03d6de4ddb926863d66a7d0b39b7b30cb340d2cb963ad0
SHA512

8f729e0545e133d961322e2c82911c1217de2c882c70c7b102620172f78f270f5ea2628b8da8753b543b0a397ffd2517741576540cfeb7e894621f813c9cc402
SSDEEP

12288:mWNR4EoOBKMNHlgo9OX9OVZvawxfFFHEoTcjdb4LS1LTSGsNm59drbJPL9oF7qaI:BoOBrBl5gQvV7/TWbiGsw5XrbJP6F/eJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.PWSX-gen.8396.18973

Files

SecuriteInfo.com.Win32.PWSX-gen.8396.18973
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 708KB - Virtual size: 704KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ