SecuriteInfo[.]com[.]Trojan[.]DownLoader[.]origin[.]9042[.]8270[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.DownLoader.origin.9042.8270.exe
Size

32.9MB
MD5

b6fb31e3d4423f267df67f488a59e90f
SHA1

c8483d72b52268ec427e0ad517a2654ae5332abd
SHA256

5ff017f8321678514625f60e12cb9faf4de6fca12e7eb74d0891617069da74c5
SHA512

80c2f80e9b27ddc070f2fe3b71b2eb0756dc4c443c3d8f8a182d33c2a35aca1bc0c14414ba1c803580c30c9215290ec83614519d92e7043d394bc42c0ede3802
SSDEEP

786432:jorl9UZ3LeOVXYsXBUazsV3dydeWi1yej6FmyjYruu0vCyL:8rlKZPVXVtsV3AI74FmOI4L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.DownLoader.origin.9042.8270.exe

Files

SecuriteInfo.com.Trojan.DownLoader.origin.9042.8270.exe
.exe windows:4 windows x86 arch:x86

66ad3ecad08e8c558105dec9442c14c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControls

kernel32

CloseHandle
CreateDirectoryA
CreateFileA
CreateProcessA
CreateThread
DeleteFileA
FindResourceA
GetCommandLineA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetTempFileNameA
GetTempPathA
HeapFree
LoadLibraryA
LoadResource
SizeofResource
WaitForSingleObject
WriteFile

shell32

SHFileOperationA

ucrtbase

__p___argc
__p___argv
__stdio_common_vsprintf
_configure_narrow_argv
_get_initial_narrow_environment
_initialize_narrow_environment
_set_app_type
exit
memset
strcat
strcpy

user32

CreateDialogParamA
DestroyWindow
DispatchMessageA
GetDlgItem
GetMessageA
PostQuitMessage
SendMessageA
TranslateMessage

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 576B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32.8MB - Virtual size: 32.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 4KB - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 4KB - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 4KB - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 4KB - Virtual size: 814B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 4KB - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66ad3ecad08e8c558105dec9442c14c3

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

shell32

ucrtbase

user32

Sections

.text Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 20B

.rdata Size: 4KB - Virtual size: 300B

.bss Size: - Virtual size: 576B

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 32.8MB - Virtual size: 32.8MB

/4 Size: 4KB - Virtual size: 128B

/19 Size: 32KB - Virtual size: 29KB

/31 Size: 4KB - Virtual size: 1KB

/45 Size: 4KB - Virtual size: 1KB

/57 Size: 4KB - Virtual size: 724B

/70 Size: 4KB - Virtual size: 868B

/81 Size: 4KB - Virtual size: 814B

/92 Size: 4KB - Virtual size: 64B

.text
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 20B

.rdata
Size: 4KB - Virtual size: 300B

.bss
Size: - Virtual size: 576B

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 32.8MB - Virtual size: 32.8MB

/4
Size: 4KB - Virtual size: 128B

/19
Size: 32KB - Virtual size: 29KB

/31
Size: 4KB - Virtual size: 1KB

/45
Size: 4KB - Virtual size: 1KB

/57
Size: 4KB - Virtual size: 724B

/70
Size: 4KB - Virtual size: 868B

/81
Size: 4KB - Virtual size: 814B

/92
Size: 4KB - Virtual size: 64B