SecuriteInfo[.]com[.]Trojan[.]GenericKD[.]71983890[.]31951[.]17187 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.GenericKD.71983890.31951.17187
Size

38KB
MD5

2a63b86bd9911a4f88305280e43a19dd
SHA1

d7e8ba9be6b620e1dd697f4cc7d63bfe26551b7a
SHA256

41051677aca75216dcbcc9bff14da8b26cda4b1a34ef6b409eeca6b4dcba260e
SHA512

f2a6eaf411b17dc3b15c5514c5a3e97759338b6264cb4f7e4e19b95660b094f313fb316efff98d47eac06f6dea7b99138b572e35be5b8b6775e46d01e7573da5
SSDEEP

768:jZ1h+PxICYPz6BG8BJwpj3c4tNaVaQLjHj5zxLODZPyoYc5s:kIDPz6B5upj3cgsp11eYss

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.GenericKD.71983890.31951.17187

Files

SecuriteInfo.com.Trojan.GenericKD.71983890.31951.17187
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\90537\source\repos\LoslandUpdater\LoslandUpdater\obj\Release\LoslandUpdater.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ