Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win64.PWSX-gen.17352.exe
Resource
win7-20240221-en
General
-
Target
SecuriteInfo.com.Win64.PWSX-gen.17352.24153
-
Size
739KB
-
MD5
120f43da8f3b2b7f24d2b509d197a885
-
SHA1
bb27a97f1c6e012b470e5035821bdad604037267
-
SHA256
ebe535e02ec19a129be4434bfa18f1fceed895db2befd06ec711594f44481990
-
SHA512
66bc3a9c4b4e115bbd9df2f6b0c8eef539e0cb2bc36042785dacbb24b0dccd6b66c00e647a71e8c8a9e5c2913b17f1527b689afb77a305d48164745f74457f7b
-
SSDEEP
12288:c5lgDBfevt7xVz/0yM5XxNfLG4KDGEoZ/ifs76cFaaxS3/KTX9xnOEp:eKDBfevlfz/0yMrNfa4WLVcw2S3sTTp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SecuriteInfo.com.Win64.PWSX-gen.17352.24153
Files
-
SecuriteInfo.com.Win64.PWSX-gen.17352.24153.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 105KB - Virtual size: 104KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ