SecuriteInfo[.]com[.]Win32[.]BackdoorX-gen[.]13984[.]32209[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Win32.BackdoorX-gen.13984.32209.exe
Size

12.3MB
MD5

5c567b886dd10af56a84efaaf9047857
SHA1

2d20c06510c3b2c0cef0047c6424ba21c7254ffe
SHA256

7b3863ca9121435fcc8f0c4bdd7dfe0592aa2be0ec8a09da2166a4c0d17e5632
SHA512

906bf7929db01fe679f063c4b65384dadda583522cc43d320fc6d840306bb9d57b93ae8e5e082d597a3f68f3478695ce2575d6e2c037308b9461b3d3d9d438a9
SSDEEP

3072:JF/uAoayZAeq2XXu8AcCWWEcFdxxYbwTs9FxAiNBW3oiq7t6P2RFNtR2PQ5:JFtzy2wXu8dWEcFXso6YP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Win32.BackdoorX-gen.13984.32209.exe

Files

SecuriteInfo.com.Win32.BackdoorX-gen.13984.32209.exe
.exe windows:4 windows x86 arch:x86

7ee01d0046db5a70f35425d3c4ec1dca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
HeapCreate
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetVersionExA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
InterlockedExchange
GetEnvironmentVariableA
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
TerminateProcess
ExitProcess
GetCommandLineA
GetStartupInfoA
RaiseException
RtlUnwind
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
GetFileTime
GetFileAttributesA
GetOEMCP
GetCPInfo
SizeofResource
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GetProcessVersion
FormatMessageA
GetCurrentThread
MulDiv
GetModuleFileNameA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
GetLastError
SetLastError
lstrcmpA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GetProcAddress
lstrlenA
lstrcpynA
VirtualAlloc
VirtualFree
LocalAlloc
LocalFree
LocalLock
LocalUnlock
GlobalSize
WriteFile
CreateFileA
CloseHandle
GetFileSize
ReadFile
GlobalReAlloc
SetFilePointer
GlobalHandle
FindResourceA
LoadResource
LockResource
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
HeapFree
HeapAlloc
Sleep

user32

DrawTextA
TabbedTextOutA
EndPaint
GetWindowDC
CharUpperA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
CopyRect
IsWindowVisible
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
InvalidateRect
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
GetParent
GetFocus
IsWindowEnabled
IsWindow
SetFocus
RegisterWindowMessageA
IsIconic
GetSystemMetrics
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
EnableWindow
ReleaseDC
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
LoadIconA
MessageBoxA
ScreenToClient
GetClientRect
ClientToScreen
GetWindowRect
GetSysColor
LoadCursorA
PostThreadMessageA
RegisterClipboardFormatA
InflateRect
GetWindowTextLengthA
SetCursor
GetDC
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
GetDesktopWindow
PtInRect
GetClassNameA
GetSysColorBrush
DestroyMenu
LoadStringA
wvsprintfA
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
PostQuitMessage
GetWindowTextA
GrayStringA
BeginPaint

gdi32

GdiFlush
DeleteDC
SetStretchBltMode
SetDIBColorTable
SelectObject
CreateDIBSection
StretchDIBits
CreateSolidBrush
SetPaletteEntries
ResizePalette
SetSystemPaletteUse
GetNearestPaletteIndex
SetBkColor
SetMapMode
GetMapMode
CreateBitmap
DPtoLP
GetClipBox
SetTextColor
SaveDC
RestoreDC
SetBkMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextColor
GetBkColor
LPtoDP
PatBlt
GetStockObject
SelectPalette
CreateDIBitmap
GetSystemPaletteEntries
GetDeviceCaps
GetPaletteEntries
CreateCompatibleDC
RealizePalette
BitBlt
GetObjectA
GetDIBits
GetTextExtentPointA
CreatePalette

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

Sections

.text
Size: 180KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12.0MB - Virtual size: 12.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ee01d0046db5a70f35425d3c4ec1dca

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

Sections

.text Size: 180KB - Virtual size: 176KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 12.0MB - Virtual size: 12.0MB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 180KB - Virtual size: 176KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 12.0MB - Virtual size: 12.0MB

.rsrc
Size: 12KB - Virtual size: 9KB