8fae173f3f01381927e146c62c5eb68c

General

Target

8fae173f3f01381927e146c62c5eb68c
Size

104KB
MD5

8fae173f3f01381927e146c62c5eb68c
SHA1

37404eb1018a3f1e66497c619b5d89d560ded4ee
SHA256

20f4263c51b941382e2edad2022fddac07a80286049adc0b0377580b9d1d7975
SHA512

d2bffc7218077d0f2cd0ea06acc153a838bc87bb80482233ec3348f664001f60b342d20aa36a27cc9c396ef1093ded622d2a29a5ae5ce63f7097d31c8ac4207a
SSDEEP

3072:FQpF3Mv4k0P/f/4TOs70lRxIZYPbJOtZdWqAmcfg:GpSsOTK0q+/mmc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8fae173f3f01381927e146c62c5eb68c

Files

8fae173f3f01381927e146c62c5eb68c
.exe windows:4 windows x86 arch:x86

ddc8b217e07236964733073bd801aa5d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

cavaj3.pdb

Imports

kernel32

InterlockedExchange
HeapFree
FreeEnvironmentStringsW
LCMapStringA
GetCurrentDirectoryW
TlsSetValue
RtlUnwind
CompareStringW
EnterCriticalSection
HeapReAlloc
GetSystemTimeAsFileTime
HeapDestroy
HeapSize
WriteFile
GetOEMCP
GetTimeZoneInformation
TlsAlloc
GetStringTypeW
FormatMessageA
TerminateProcess
GetStartupInfoA
SetEnvironmentVariableA
SetHandleCount
TlsFree
InitializeCriticalSection
GetExitCodeProcess
GetTickCount
FreeEnvironmentStringsA
HeapCreate
FlushFileBuffers
SetLastError
GetExitCodeThread
LCMapStringW
GetDriveTypeA
QueryPerformanceCounter
ReadFile
FindClose
GetCommandLineA
GetEnvironmentStringsW
CreateFileA
GetLastError
GetProcAddress
MultiByteToWideChar
GetStringTypeA
GetEnvironmentStrings
ExitThread
FreeLibrary
GetFileType
QueryPerformanceFrequency
WideCharToMultiByte
ExitProcess
LocalFree
GetCurrentProcess
SetFilePointer
DeleteCriticalSection
UnhandledExceptionFilter
GetModuleHandleA
LeaveCriticalSection
FindNextFileA
GetLocaleInfoA
GetCPInfo
HeapAlloc
GetModuleFileNameA
GetCurrentThreadId
CompareStringA
GetCurrentDirectoryA
LoadLibraryA
CloseHandle
SetStdHandle
GetACP
WaitForSingleObject
GetStdHandle
FileTimeToSystemTime
GetNumberOfConsoleMouseButtons
GetConsoleTitleA
GetSystemInfo
GetVersionExA
SetEndOfFile
TlsGetValue
FindFirstFileA

advapi32

RegEnumKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ddc8b217e07236964733073bd801aa5d

Headers

File Characteristics

PDB Paths

Imports

kernel32

advapi32

Sections

.text Size: 68KB - Virtual size: 67KB

.data Size: 4KB - Virtual size: 1.0MB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: 68KB - Virtual size: 67KB

.data
Size: 4KB - Virtual size: 1.0MB

.rsrc
Size: 28KB - Virtual size: 26KB