8becfc85149257exeexeexeex[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

8becfc85149257exeexeexeex.exe
Size

1.7MB
MD5

8becfc85149257c36a3c39c4934ff3e7
SHA1

8ee5f3f79e6ba73320ecd9a049316a62ca258cbd
SHA256

5cfa360fc3a16d20f9b828d8836df1a030dda47514ec9b8d9f01230e9c109d06
SHA512

6e464d2349c7f785282e7d363eb47f7cb98ee06bca7112d4edc90dd834694e9d02f67a5c3bbfe95d261ded25ba2297905ca13bdac3c1d38dfdd423e512425882
SSDEEP

12288:ot5z7ELMdiXhNWB76t4Yk5Ht5X6dk9zOfeK6n3hqF2F7ahCjCyrc6:ot5z7ELMYRNWBuNejukUenjhVjV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8becfc85149257exeexeexeex.exe

Files

8becfc85149257exeexeexeex.exe
.exe windows x86

95e2ec7f6a47871e6b896bcf0d009360

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFolderPathA

kernel32

WriteFile
GetCommandLineA
GlobalAlloc
GetSystemDirectoryA
CreateDirectoryA
GetLastError
RemoveDirectoryA
CreateMutexA
CloseHandle
LocalFree
DeleteFileA
ExitProcess
GetLocaleInfoA
WideCharToMultiByte
SetDllDirectoryA
TerminateProcess
FindClose
Sleep
FormatMessageW
GetLocalTime
GetCurrentThreadId
GetCurrentProcessId
PeekNamedPipe
SetHandleInformation
GetExitCodeProcess
CreateProcessA
ReadFile
CreatePipe
MultiByteToWideChar
GetNativeSystemInfo
GetCurrentProcess
GetVersionExW
GetModuleFileNameA
GetTempPathA
GetTickCount
FreeLibrary
LoadLibraryW
GetProcAddress
WaitForSingleObject
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
lstrcmpA
DecodePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapSetInformation
GetStartupInfoW
HeapAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileExA
GetFileType
GetConsoleCP
GetConsoleMode
GetCPInfo
RaiseException
CreateFileA
LCMapStringW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapCreate
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
QueryPerformanceCounter
GetSystemTimeAsFileTime
SetFilePointer
FlushFileBuffers
GetFullPathNameA
GetFileInformationByHandle
GetCurrentDirectoryW
GetACP
GetOEMCP
IsValidCodePage
HeapSize
SetStdHandle
SetEndOfFile
GetProcessHeap
WriteConsoleW
GetLocaleInfoW
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
HeapReAlloc
GetDriveTypeW
GetTimeZoneInformation
CreateFileW
CompareStringW
SetEnvironmentVariableA
EncodePointer
GetModuleHandleExA
RtlUnwind

user32

DispatchMessageW
IsWindowUnicode
PeekMessageA
TranslateMessage
GetMessageW
GetMessageA
MsgWaitForMultipleObjectsEx
DispatchMessageA

advapi32

RegSetValueExA
RegEnumKeyExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA

Sections

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

95e2ec7f6a47871e6b896bcf0d009360

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

user32

advapi32

Sections

.text Size: 163KB - Virtual size: 163KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 31KB - Virtual size: 31KB

.reloc Size: 1.5MB - Virtual size: 1.5MB

.text
Size: 163KB - Virtual size: 163KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 31KB - Virtual size: 31KB

.reloc
Size: 1.5MB - Virtual size: 1.5MB