SecuriteInfo[.]com[.]HEUR[.]HackTool[.]Win32[.]PixieWPS[.]gen[.]5223[.]20632[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.HEUR.HackTool.Win32.PixieWPS.gen.5223.20632.exe
Size

154KB
MD5

9f8bd3e97595f7c9e01991cffb2616d4
SHA1

b9a3398d6268e414016b317401f104352394754d
SHA256

b91166d5623d4077003ae8527e9169092994f5c189c8a3820b32e204b4230578
SHA512

e72687b8929f3ed08e8e60e1857753fec9259548fc2c31b765e32e34cbbd8603499d358896414480ee508d10434bdcec6af985272d7153fabcc10f2b08c08857
SSDEEP

3072:j3JKugDTHPUM3OvzoQTGdvnuT9I2i/rA5dlADB1L4gLQ7rnAW7:Yugk1BI2i/r63ADogLQXN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.HEUR.HackTool.Win32.PixieWPS.gen.5223.20632.exe

Files

SecuriteInfo.com.HEUR.HackTool.Win32.PixieWPS.gen.5223.20632.exe
.exe windows:4 windows x86 arch:x86

eafcfe61c790060004479b29c57acefe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindAtomA
GetAtomNameA
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
SetUnhandledExceptionFilter
Sleep
WideCharToMultiByte

msvcrt

__getmainargs
__lc_codepage
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_errno
_iob
_onexit
_setmode
abort
atexit
atoi
calloc
fflush
fprintf
fputc
free
freopen
getenv
gmtime
localeconv
malloc
memcmp
signal
strcpy
strftime
strlen
wcslen

pthreadgc2

pthread_create
pthread_join
pthread_num_processors_np

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 128B

IMAGE_SCN_MEM_DISCARDABLE

/19
Size: 512B - Virtual size: 235B

IMAGE_SCN_MEM_DISCARDABLE

/35
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_MEM_DISCARDABLE

/47
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE

/61
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE

/73
Size: 512B - Virtual size: 228B

IMAGE_SCN_MEM_DISCARDABLE

/86
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE

/97
Size: 512B - Virtual size: 272B

IMAGE_SCN_MEM_DISCARDABLE

Sharing

General

Malware Config

Signatures

Files

eafcfe61c790060004479b29c57acefe

Headers

File Characteristics

Imports

kernel32

msvcrt

pthreadgc2

Sections

.text Size: 83KB - Virtual size: 82KB

.data Size: 4KB - Virtual size: 4KB

.rdata Size: 20KB - Virtual size: 19KB

.bss Size: - Virtual size: 2KB

.idata Size: 1KB - Virtual size: 1KB

/4 Size: 512B - Virtual size: 128B

/19 Size: 512B - Virtual size: 235B

/35 Size: 5KB - Virtual size: 5KB

/47 Size: 1KB - Virtual size: 1KB

/61 Size: 1KB - Virtual size: 1KB

/73 Size: 512B - Virtual size: 228B

/86 Size: 2KB - Virtual size: 1KB

/97 Size: 512B - Virtual size: 272B

.text
Size: 83KB - Virtual size: 82KB

.data
Size: 4KB - Virtual size: 4KB

.rdata
Size: 20KB - Virtual size: 19KB

.bss
Size: - Virtual size: 2KB

.idata
Size: 1KB - Virtual size: 1KB

/4
Size: 512B - Virtual size: 128B

/19
Size: 512B - Virtual size: 235B

/35
Size: 5KB - Virtual size: 5KB

/47
Size: 1KB - Virtual size: 1KB

/61
Size: 1KB - Virtual size: 1KB

/73
Size: 512B - Virtual size: 228B

/86
Size: 2KB - Virtual size: 1KB

/97
Size: 512B - Virtual size: 272B