caffeine64[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

caffeine64.exe
Size

401KB
MD5

759509ec8f1618c3a6035cd0e570ca4e
SHA1

e4cfe84512efb33d6cc4fbe5d43d446b8314daab
SHA256

288b53495ef3fd237fa4640756c096bc8daaa6c6ff4942f6f792b29038ec259e
SHA512

de139c6da4fce7890a9054813a721168361cf25474b588930bc7310547443c02add3457d879addd965207b0c2741a8c36c4a62623296558eadb7ed85f3522e56
SSDEEP

6144:6LDuAuc/YnM+SOgBQR9+7Mpp07XC702afSxH20OdUaBrfFR9uG5LWpqV:pc/YnMtg+7Mppm+B20OzbujpqV

Score

N/A

Malware Config

Signatures

Files

caffeine64.exe
.exe windows x64

7f3226bb91e22fb46e9b7d0ea6c5b89e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

SendMessageW
IsIconic
GetClientRect
EnableWindow
LoadIconW
GetSystemMetrics
SetCursor
PtInRect
InflateRect
GetWindowRect
GetDC
ReleaseDC
InvalidateRect
UnregisterClassW
GetSysColorBrush
GetMenuItemInfoW
UnpackDDElParam
ReuseDDElParam
DestroyMenu
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
SetRectEmpty
BringWindowToTop
TranslateAcceleratorW
WindowFromPoint
RedrawWindow
SetCapture
GetParent
ReleaseCapture
IsWindow
GetSysColor
MessageBeep
CopyIcon
LoadCursorW
SetWindowLongW
GetWindow
SetTimer
GetWindowTextW
GetTopWindow
SendInput
GetAsyncKeyState
FindWindowW
RegisterWindowMessageW
SystemParametersInfoW
GetMenuItemID
GetSubMenu
LoadMenuW
PostMessageW
KillTimer
SetActiveWindow
SetForegroundWindow
SetMenuDefaultItem
TrackPopupMenu
GetCursorPos
ModifyMenuW
GetClassNameW
GetDesktopWindow
EndPaint
BeginPaint
PostQuitMessage
CheckMenuItem
EnableMenuItem
GetMenuState
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
PeekMessageW
GetKeyState
IsWindowVisible
GetActiveWindow
DispatchMessageW
TranslateMessage
GetMessageW
CallNextHookEx
SetWindowsHookExW
ShowOwnedPopups
MessageBoxW
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetWindowThreadProcessId
UnhookWindowsHookEx
GetWindowPlacement
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
GetMenu
CopyRect
CallWindowProcW
DefWindowProcW
GetDlgCtrlID
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
GetMenuItemCount
UpdateWindow
SetMenu
MapWindowPoints
GetMessagePos
GetMessageTime
SetWindowLongPtrW
GetWindowLongPtrW
DestroyWindow
GetDlgItem
EndDeferWindowPos
BeginDeferWindowPos
GetForegroundWindow
GetWindowTextLengthW
SetFocus
RemovePropW
GetPropW
SetPropW
GetClassLongPtrW
GetCapture
WinHelpW
SendDlgItemMessageW
SendDlgItemMessageA
IsDialogMessageW
SetWindowTextW
ShowWindow
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamW
FillRect
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
ClientToScreen
GetWindowDC

wtsapi32

WTSRegisterSessionNotification

kernel32

GlobalGetAtomNameW
lstrlenA
WritePrivateProfileStringW
GlobalFlags
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
InitializeCriticalSection
TlsAlloc
GlobalReAlloc
GlobalHandle
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
WriteFile
SetFilePointer
FlushFileBuffers
FormatMessageW
GetCurrentProcess
SetErrorMode
GetStartupInfoW
RtlLookupFunctionEntry
RtlUnwindEx
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
Sleep
ExitProcess
RaiseException
RtlPcToFileHeader
HeapReAlloc
HeapQueryInformation
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
FlsAlloc
HeapSetInformation
HeapCreate
QueryPerformanceCounter
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
LocalFree
GlobalUnlock
GlobalFree
lstrlenW
FreeResource
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
GetCurrentProcessId
SetLastError
GlobalAddAtomW
CloseHandle
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
GetModuleFileNameW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
WideCharToMultiByte
CompareStringA
GlobalLock
lstrcmpW
GlobalAlloc
GetModuleHandleW
GetProcAddress
MultiByteToWideChar
MulDiv
GetVersion
GetVersionExW
SetThreadExecutionState
FindResourceW
LoadResource
LockResource
SizeofResource
GetWindowsDirectoryW
LoadLibraryW
FreeLibrary
GetLastError
GetTickCount

gdi32

OffsetViewportOrgEx
CreateCompatibleBitmap
CreateSolidBrush
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPixel
BitBlt
DeleteObject
SetMapMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps
GetTextExtentPoint32W
GetObjectW
CreateFontIndirectW
GetStockObject

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegEnumKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyW
RegQueryValueW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

Shell_NotifyIconW
DragFinish
DragQueryFileW
ShellExecuteW

shlwapi

PathFindExtensionW
PathFindFileNameW

oleaut32

VariantInit
VariantChangeType
VariantClear
SystemTimeToVariantTime
VariantTimeToSystemTime

pdh

PdhOpenQueryW
PdhCloseQuery
PdhGetFormattedCounterValue
PdhCollectQueryData
PdhAddCounterW

Sections

.text
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f3226bb91e22fb46e9b7d0ea6c5b89e

Headers

DLL Characteristics

File Characteristics

Imports

user32

wtsapi32

kernel32

gdi32

winspool.drv

advapi32

shell32

shlwapi

oleaut32

pdh

Sections

.text Size: 224KB - Virtual size: 224KB

.rdata Size: 85KB - Virtual size: 85KB

.data Size: 12KB - Virtual size: 35KB

.pdata Size: 17KB - Virtual size: 16KB

.rsrc Size: 61KB - Virtual size: 61KB

.text
Size: 224KB - Virtual size: 224KB

.rdata
Size: 85KB - Virtual size: 85KB

.data
Size: 12KB - Virtual size: 35KB

.pdata
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 61KB - Virtual size: 61KB