SecuriteInfo[.]com[.]Win32[.]MalwareX-gen[.]1973[.]5701[.]exe | Triage

Sharing

General

Target

SecuriteInfo.com.Win32.MalwareX-gen.1973.5701.exe
Size

4.4MB
MD5

8950f909a1fe050c3c4812915c1a2f4a
SHA1

2cca91cdfeb043672b6492998b7a1c047f9d7b5c
SHA256

4a69b99db415e1bf5f901d51f3bdc828d6a3155ab18626450ef5467ef7728058
SHA512

1eb88e96f765881c3820f76e919aed3c92d12f310a770a8e2a396bc5995a313c185c86b0fb851cee5567924b65a2eb680f21d201cb4044bac24fac7006cb4b06
SSDEEP

98304:3hgPnJU0FD2xI/otxtThL3dcq18DZrp/GJ7nwL3/7jSLo99n5SqvG4JbjJB0rZut:xanJUcmtTjcG8NomL3jAY9nYqbJbjsE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.MalwareX-gen.1973.5701.exe

Files

SecuriteInfo.com.Win32.MalwareX-gen.1973.5701.exe
.exe windows:5 windows x86 arch:x86

9876d474c067fe3cc176df0bc6887f3f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

CallWindowProcA

advapi32

CryptAcquireContextA

gdi32

CreateFontA

wininet

InternetOpenA

msvcrt

_ftol

shlwapi

PathFileExistsA

shell32

DragQueryFileA

comctl32

ImageList_DragShowNolock

Sections

.text
Size: - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.K^F
Size: - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.c$e
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.O)U
Size: 4.4MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ