8cac125bc042cde1c7fe4f0d2c3b8e0d

Sharing

Copy URL Twitter E-mail

General

Target

8cac125bc042cde1c7fe4f0d2c3b8e0d
Size

84KB
MD5

8cac125bc042cde1c7fe4f0d2c3b8e0d
SHA1

bdb3ee8885dec41a95bb31d5f74afbe37c853445
SHA256

001a34ba5962e5301927b4b0750947d571ba6511acc3d0f37d6ae3ba4a31610a
SHA512

60466fc180a06afc0ba8498abf589bfc5ffd0ed02d1ebb045380008bd9150e864a0f3d07d1cde81d15016b7b9cf41fbd75e2d2516bb9c3f53ba5c9ec58f5a35a
SSDEEP

1536:VCHuTecjKdBgmPhIjDtVyxVRAOvURiNnF4fWv/S:wgayjZoli4Nva

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cac125bc042cde1c7fe4f0d2c3b8e0d

Files

8cac125bc042cde1c7fe4f0d2c3b8e0d
.exe windows:4 windows x86 arch:x86

7b7448d912e9fc3868caf843bb1c246a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyW
RegLoadKeyA
RegDeleteValueW
RegDeleteKeyA
RegQueryValueExA
RegDeleteKeyW
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegEnumValueA
RegLoadKeyW
RegOpenKeyW
RegCreateKeyExA
RegEnumKeyExW
RegQueryValueW
RegOpenKeyA
RegEnumValueW
RegGetKeySecurity
RegQueryInfoKeyW
RegCreateKeyExW

gdi32

CancelDC
ExcludeClipRect
AddFontResourceExA
RestoreDC
AddFontResourceTracking
CreateSolidBrush
GetClipBox
AddFontResourceW
ClearBrushAttributes
ClearBitmapAttributes
CopyMetaFileA
GetPixel
GetPixel
GetBitmapBits
DeleteDC
GetCurrentPositionEx
ExtTextOutA
AddFontResourceA
BeginPath

kernel32

GetCommandLineA
GetDateFormatA
GetModuleFileNameA
GetModuleHandleA
lstrlenA
GetFileAttributesA
GetStdHandle
GetStringTypeW
HeapAlloc
WideCharToMultiByte
SetLastError
GlobalAlloc
GetLastError
GetFullPathNameA
GlobalFree
lstrcmpiA
lstrcmpA
lstrcpyA
GetFileType
GetFileSize

user32

GetWindowTextA
AppendMenuW
LoadCursorA
DrawTextW
GetCursor
DrawIconEx
BlockInput
DialogBoxParamA
InsertMenuA
DrawTextA
IsMenu
LoadMenuA
CreateIcon
GetFocus
GetMenu
CopyImage

comctl32

ImageList_LoadImageW
ImageList_DrawEx
ImageList_Create
ImageList_Destroy
ImageList_GetDragImage
ImageList_Draw
ImageList_AddMasked
ImageList_DrawIndirect
ImageList_GetImageRect
ImageList_GetIcon
ImageList_DragEnter
ImageList_Copy
InitCommonControls
ImageList_Merge
ImageList_Remove
ImageList_DragLeave
ImageList_LoadImage
ImageList_GetIconSize

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b7448d912e9fc3868caf843bb1c246a

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

user32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 113KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 113KB

.rsrc
Size: 4KB - Virtual size: 2KB