CASCADE[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CASCADE.exe
Size

306KB
MD5

1860cce27857987677c6952b8a4859a4
SHA1

c541f634e7e88beeb6d6c8f2e20f7ee3c87320cb
SHA256

e8c0a9b93c99c1017e995c953108c2301335c155c9d0982aea5fb0127f1ba6e0
SHA512

7f4f75b9c16f48df416fe500bd192095155af109d0cc820dc25b1036052f161584faa22d8840574addf8f49a9133ca8b063b8dbd6395beb0b65d13b58305d219
SSDEEP

6144:TYmFEa18Dq9gBIBnqj29wdgJQPO6YAsj3c8Cw:TYDqpFqj4wdgJh6YAsj3c8R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CASCADE.exe

Files

CASCADE.exe
.exe windows:4 windows x86 arch:x86

7bc19d97e1364284b008a39e7a8f0da3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ftd2xx

ord1
ord8
ord17
ord9
ord16
ord19
ord2
ord4
ord18
ord21
ord3
ord7
ord23
ord22
ord12
ord13
ord10
ord11
ord70
ord72

qtcore4

_Z5qFreePv
_ZN10QByteArray7reallocEi
_ZN11QMetaObject8activateEP7QObjectPKS_iPPv
_ZN16QCoreApplication4quitEv
_ZN4QUrlC1ERK7QString
_ZN4QUrlD1Ev
_ZN7QObject10childEventEP11QChildEvent
_ZN7QObject10timerEventEP11QTimerEvent
_ZN7QObject11customEventEP6QEvent
_ZN7QObject11eventFilterEPS_P6QEvent
_ZN7QObject13connectNotifyEPKc
_ZN7QObject16disconnectNotifyEPKc
_ZN7QObject5eventEP6QEvent
_ZN7QObject7connectEPKS_PKcS1_S3_N2Qt14ConnectionTypeE
_ZN7QString11shared_nullE
_ZN7QString16fromAscii_helperEPKci
_ZN7QString4freeEPNS_4DataE
_ZN7QString6appendERKS_
_ZN7QString6numberEii
_ZN7QString7sprintfEPKcz
_ZN7QString9fromAsciiEPKci
_ZN7QStringaSERKS_
_ZN7QThread11qt_metacallEN11QMetaObject4CallEiPPv
_ZN7QThread11qt_metacastEPKc
_ZN7QThread4waitEm
_ZN7QThread5startENS_8PriorityE
_ZN7QThread9terminateEv
_ZN7QThreadC2EP7QObject
_ZN7QThreadD2Ev
_ZN8QVariantD1Ev
_ZN9QListData6detachEi
_ZNK7QObject6senderEv
_ZNK7QString11toLocal8BitEv
_ZNK7QString5toIntEPbi
_ZNK7QThread10metaObjectEv

qtgui4

_ZN10QBoxLayout9addWidgetEP7QWidgeti6QFlagsIN2Qt13AlignmentFlagEE
_ZN11QFileDialog11setFileModeENS_8FileModeE
_ZN11QFileDialog13setAcceptModeENS_10AcceptModeE
_ZN11QFileDialog16setDefaultSuffixERK7QString
_ZN11QFileDialog19setConfirmOverwriteEb
_ZN11QFileDialogC1EP7QWidgetRK7QStringS4_S4_
_ZN11QFileDialogD1Ev
_ZN11QGridLayout9addWidgetEP7QWidgetii6QFlagsIN2Qt13AlignmentFlagEE
_ZN11QGridLayoutC1Ev
_ZN11QHBoxLayoutC1Ev
_ZN11QMessageBox15setDetailedTextERK7QString
_ZN11QMessageBox7warningEP7QWidgetRK7QStringS4_6QFlagsINS_14StandardButtonEES6_
_ZN11QMessageBox9addButtonERK7QStringNS_10ButtonRoleE
_ZN11QMessageBoxC1ENS_4IconERK7QStringS3_6QFlagsINS_14StandardButtonEEP7QWidgetS4_IN2Qt10WindowTypeEE
_ZN11QMessageBoxD1Ev
_ZN11QPushButton10paintEventEP11QPaintEvent
_ZN11QPushButton11qt_metacallEN11QMetaObject4CallEiPPv
_ZN11QPushButton11qt_metacastEPKc
_ZN11QPushButton12focusInEventEP11QFocusEvent
_ZN11QPushButton13focusOutEventEP11QFocusEvent
_ZN11QPushButton13keyPressEventEP9QKeyEvent
_ZN11QPushButton5eventEP6QEvent
_ZN11QPushButtonC1ERK7QStringP7QWidget
_ZN11QPushButtonC2ERK7QStringP7QWidget
_ZN11QPushButtonD2Ev
_ZN11QVBoxLayoutC1Ev
_ZN12QApplication4execEv
_ZN12QApplicationC1ERiPPci
_ZN12QRadioButtonC1ERK7QStringP7QWidget
_ZN13QIntValidatorC1EiiP7QObject
_ZN15QAbstractButton10setCheckedEb
_ZN15QAbstractButton10timerEventEP11QTimerEvent
_ZN15QAbstractButton11changeEventEP6QEvent
_ZN15QAbstractButton13checkStateSetEv
_ZN15QAbstractButton14mouseMoveEventEP11QMouseEvent
_ZN15QAbstractButton14nextCheckStateEv
_ZN15QAbstractButton15keyReleaseEventEP9QKeyEvent
_ZN15QAbstractButton15mousePressEventEP11QMouseEvent
_ZN15QAbstractButton17mouseReleaseEventEP11QMouseEvent
_ZN16QDesktopServices7openUrlERK4QUrl
_ZN5QFont12setPixelSizeEi
_ZN5QFont9setWeightEi
_ZN5QFontC1ERKS_
_ZN5QFontD1Ev
_ZN5QFontaSERKS_
_ZN5QIconC1Ev
_ZN5QIconD1Ev
_ZN5QMenu12addSeparatorEv
_ZN5QMenu9addActionERK7QString
_ZN5QMenuC1ERK7QStringP7QWidget
_ZN6QBrushC1ERK6QColorN2Qt10BrushStyleE
_ZN6QBrushD1Ev
_ZN6QColor10invalidateEv
_ZN6QColor6setRgbEiiii
_ZN6QColorC1EN2Qt11GlobalColorE
_ZN6QColoraSERKS_
_ZN6QFrame13setFrameStyleEi
_ZN6QImage4bitsEv
_ZN6QImageC1ERK5QSizeNS_6FormatE
_ZN6QLabel12setAlignmentE6QFlagsIN2Qt13AlignmentFlagEE
_ZN6QLabel7setTextERK7QString
_ZN6QLabelC1EP7QWidget6QFlagsIN2Qt10WindowTypeEE
_ZN6QLabelC1ERK7QStringP7QWidget6QFlagsIN2Qt10WindowTypeEE
_ZN7QDialog4execEv
_ZN7QDialogC1EP7QWidget6QFlagsIN2Qt10WindowTypeEE
_ZN7QDialogD1Ev
_ZN7QRegionC1Ev
_ZN7QRegionD1Ev
_ZN7QWidget10closeEventEP11QCloseEvent
_ZN7QWidget10enterEventEP6QEvent
_ZN7QWidget10fontChangeERK5QFont
_ZN7QWidget10leaveEventEP6QEvent
_ZN7QWidget10paintEventEP11QPaintEvent
_ZN7QWidget10setEnabledEb
_ZN7QWidget10setPaletteERK8QPalette
_ZN7QWidget10setVisibleEb
_ZN7QWidget10wheelEventEP11QWheelEvent
_ZN7QWidget11actionEventEP12QActionEvent
_ZN7QWidget11changeEventEP6QEvent
_ZN7QWidget11qt_metacallEN11QMetaObject4CallEiPPv
_ZN7QWidget11qt_metacastEPKc
_ZN7QWidget11resizeEventEP12QResizeEvent
_ZN7QWidget11setGeometryERK5QRect
_ZN7QWidget11styleChangeER6QStyle
_ZN7QWidget11tabletEventEP12QTabletEvent
_ZN7QWidget12focusInEventEP11QFocusEvent
_ZN7QWidget12grabKeyboardEv
_ZN7QWidget12setFixedSizeERK5QSize
_ZN7QWidget12setFixedSizeEii
_ZN7QWidget13dragMoveEventEP14QDragMoveEvent
_ZN7QWidget13enabledChangeEb
_ZN7QWidget13focusOutEventEP11QFocusEvent
_ZN7QWidget13keyPressEventEP9QKeyEvent
_ZN7QWidget13paletteChangeERK8QPalette
_ZN7QWidget13setSizePolicyE11QSizePolicy
_ZN7QWidget14dragEnterEventEP15QDragEnterEvent
_ZN7QWidget14dragLeaveEventEP15QDragLeaveEvent
_ZN7QWidget14languageChangeEv
_ZN7QWidget14mouseMoveEventEP11QMouseEvent
_ZN7QWidget14setWindowTitleERK7QString
_ZN7QWidget15keyReleaseEventEP9QKeyEvent
_ZN7QWidget15mousePressEventEP11QMouseEvent
_ZN7QWidget15releaseKeyboardEv
_ZN7QWidget16contextMenuEventEP17QContextMenuEvent
_ZN7QWidget16inputMethodEventEP17QInputMethodEvent
_ZN7QWidget16staticMetaObjectE
_ZN7QWidget17mouseReleaseEventEP11QMouseEvent
_ZN7QWidget18focusNextPrevChildEb
_ZN7QWidget18setContentsMarginsEiiii
_ZN7QWidget21mouseDoubleClickEventEP11QMouseEvent
_ZN7QWidget21setAutoFillBackgroundEb
_ZN7QWidget22windowActivationChangeEb
_ZN7QWidget4moveERK6QPoint
_ZN7QWidget5eventEP6QEvent
_ZN7QWidget6resizeERK5QSize
_ZN7QWidget6updateEv
_ZN7QWidget7setFontERK5QFont
_ZN7QWidget8winEventEP6tagMSGPl
_ZN7QWidget9dropEventEP10QDropEvent
_ZN7QWidget9hideEventEP10QHideEvent
_ZN7QWidget9moveEventEP10QMoveEvent
_ZN7QWidget9setLayoutEP7QLayout
_ZN7QWidget9showEventEP10QShowEvent
_ZN7QWidgetC1EPS_6QFlagsIN2Qt10WindowTypeEE
_ZN7QWidgetC2EPS_6QFlagsIN2Qt10WindowTypeEE
_ZN7QWidgetD2Ev
_ZN8QMenuBar7addMenuEP5QMenu
_ZN8QMenuBarC1EP7QWidget
_ZN8QPainter9drawImageERK7QPointFRK6QImage
_ZN8QPainterC1EP12QPaintDevice
_ZN8QPainterD1Ev
_ZN8QPalette8setBrushENS_10ColorGroupENS_9ColorRoleERK6QBrush
_ZN8QPaletteC1ERKS_
_ZN8QPaletteD1Ev
_ZN9QCheckBox13setCheckStateEN2Qt10CheckStateE
_ZN9QCheckBoxC1ERK7QStringP7QWidget
_ZN9QComboBox10insertItemEiRK5QIconRK7QStringRK8QVariant
_ZN9QComboBox11setEditableEb
_ZN9QComboBoxC1EP7QWidget
_ZN9QGroupBoxC1ERK7QStringP7QWidget
_ZN9QLineEdit12setValidatorEPK10QValidator
_ZN9QLineEdit7setTextERK7QString
_ZN9QTextEdit11setReadOnlyEb
_ZN9QTextEdit23setTextInteractionFlagsE6QFlagsIN2Qt19TextInteractionFlagEE
_ZN9QTextEditC1ERK7QStringP7QWidget
_ZNK11QFileDialog13selectedFilesEv
_ZNK11QMessageBox13clickedButtonEv
_ZNK11QPushButton10metaObjectEv
_ZNK11QPushButton15minimumSizeHintEv
_ZNK11QPushButton8sizeHintEv
_ZNK15QAbstractButton9hitButtonERK6QPoint
_ZNK6QImage5widthEv
_ZNK7QWidget11paintEngineEv
_ZNK7QWidget14heightForWidthEi
_ZNK7QWidget15minimumSizeHintEv
_ZNK7QWidget16inputMethodQueryEN2Qt16InputMethodQueryE
_ZNK7QWidget1xEv
_ZNK7QWidget1yEv
_ZNK7QWidget5getDCEv
_ZNK7QWidget6metricEN12QPaintDevice17PaintDeviceMetricE
_ZNK7QWidget7devTypeEv
_ZNK7QWidget7paletteEv
_ZNK7QWidget8sizeHintEv
_ZNK7QWidget9releaseDCEP5HDC__
_ZNK9QComboBox5countEv
_ZNK9QComboBox8lineEditEv
_ZNK9QLineEdit4textEv
_ZThn8_NK7QWidget11paintEngineEv
_ZThn8_NK7QWidget5getDCEv
_ZThn8_NK7QWidget6metricEN12QPaintDevice17PaintDeviceMetricE
_ZThn8_NK7QWidget7devTypeEv
_ZThn8_NK7QWidget9releaseDCEP5HDC__

kernel32

CreateEventA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_fstat
_strdup
_unlink
__getmainargs
__lc_codepage
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_cexit
_errno
_iob
_onexit
_setmode
_winmajor
abort
atexit
calloc
exit
fclose
fflush
fopen
fprintf
fputc
fread
free
fseek
fwrite
getenv
localeconv
malloc
memcpy
memset
perror
rand
signal
sprintf
sscanf
strcmp
strlen
strrchr
strtok
strtol
strtoul
system
vfprintf
wcslen

zlib1

gzclose
gzeof
gzgets
gzopen
gzputc
gzputs
gzread
gzseek
gztell
gzwrite

libgcc_s_sjlj-1

_Unwind_SjLj_Register
_Unwind_SjLj_Resume
_Unwind_SjLj_Unregister
__divdi3
__udivdi3
__umoddi3

libstdc++-6

_ZdlPv
_Znaj
_Znwj
__cxa_pure_virtual
__gxx_personality_sj0

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7bc19d97e1364284b008a39e7a8f0da3

Headers

File Characteristics

Imports

ftd2xx

qtcore4

qtgui4

kernel32

msvcrt

zlib1

libgcc_s_sjlj-1

libstdc++-6

Sections

.text Size: 180KB - Virtual size: 180KB

.data Size: 74KB - Virtual size: 73KB

.rdata Size: 17KB - Virtual size: 16KB

.bss Size: - Virtual size: 3KB

.idata Size: 13KB - Virtual size: 12KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 180KB - Virtual size: 180KB

.data
Size: 74KB - Virtual size: 73KB

.rdata
Size: 17KB - Virtual size: 16KB

.bss
Size: - Virtual size: 3KB

.idata
Size: 13KB - Virtual size: 12KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 19KB - Virtual size: 19KB