KWUMMMJYF[.]exe

Resubmissions

21/12/2022, 15:37

221221-s2jl5sff8y 3

21/12/2022, 15:35

221221-s1mx6sff8w 3

21/12/2022, 15:32

221221-sysewaff7w 10

Sharing

Copy URL Twitter E-mail

General

Target

KWUMMMJYF.exe
Size

12.9MB
MD5

c37c329617c93fe897657ba8002dbd11
SHA1

7c5b4f7dcf5032cc5035a38a921054bfb31d15f9
SHA256

4882ca2e85a66d0b460b4fa772e0eb749e13770e0781687e178d1d302356c8fc
SHA512

73cd2adc7e66d9443f69c8e0625ac6ecdd8f2dface4ce0a238413cbfac0f70b184d99bdc48f09d074c8eb71cc814ece481a25141a16bd202fad9b45bddea6c68
SSDEEP

196608:3AvHMMFDG4uQRdRbUgIEb7UHZQa3TyYcP2/7z26mFlRNgnTdRagGCEWf7nPk2f6r:QP5uQFLIq1ae9uC6Wf2ptGuDhzWn

Score

N/A

Malware Config

Signatures

Files

KWUMMMJYF.exe
.exe windows x86

c9762306adc73a6952046138ca5025d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AreFileApisANSI
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetDC
CharUpperBuffW

advapi32

AdjustTokenPrivileges

gdi32

BitBlt

ole32

CreateStreamOnHGlobal

hid

HidD_GetHidGuid

setupapi

SetupDiDestroyDeviceInfoList

d3d9

Direct3DCreate9

iphlpapi

GetAdaptersInfo

shlwapi

PathFindFileNameW

ntdll

RtlAnsiStringToUnicodeString

gdiplus

GdipCreateBitmapFromHBITMAP

ws2_32

WSACleanup

crypt32

CertAddCertificateContextToStore

wldap32

ord301

normaliz

IdnToAscii

Sections

.text
Size: - Virtual size: 833KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: - Virtual size: 314B

.Rbn0
Size: - Virtual size: 7.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Rbn1
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rbn2
Size: 12.9MB - Virtual size: 12.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 422B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

c9762306adc73a6952046138ca5025d5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

hid

setupapi

d3d9

iphlpapi

shlwapi

ntdll

gdiplus

ws2_32

crypt32

wldap32

normaliz

Sections

.text Size: - Virtual size: 833KB

.rdata Size: - Virtual size: 182KB

.data Size: - Virtual size: 2.6MB

.00cfg Size: - Virtual size: 8B

.tls Size: - Virtual size: 9B

.voltbl Size: - Virtual size: 314B

.Rbn0 Size: - Virtual size: 7.3MB

.Rbn1 Size: 2KB - Virtual size: 1KB

.Rbn2 Size: 12.9MB - Virtual size: 12.9MB

.rsrc Size: 512B - Virtual size: 422B

.text
Size: - Virtual size: 833KB

.rdata
Size: - Virtual size: 182KB

.data
Size: - Virtual size: 2.6MB

.00cfg
Size: - Virtual size: 8B

.tls
Size: - Virtual size: 9B

.voltbl
Size: - Virtual size: 314B

.Rbn0
Size: - Virtual size: 7.3MB

.Rbn1
Size: 2KB - Virtual size: 1KB

.Rbn2
Size: 12.9MB - Virtual size: 12.9MB

.rsrc
Size: 512B - Virtual size: 422B