wallpaper64[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

wallpaper64.exe
Size

1.6MB
MD5

280a6cc21ff8e076b5c3408304337750
SHA1

7c1ecdde4c8d602aab6a75ef707f2eca6e62ba6b
SHA256

c35edfaa78ef6fcb0477b20b400545267f67c527fa43b5909c28e2cde288c3a6
SHA512

944e53ed1a32c009aa781053afa9e0de3eccd21c3cb818c4123f7cbd89487907cb61552e5a4b579024eb43d5a6b2bf83b169d4b44c4966198f2270577fb84044
SSDEEP

24576:GjiYY/2086HmPCTjXsySlhpQ0tUHLqYIbS0CHGtnoF7erz:GjB08gmPCTj8D2EUeFimtn2k

Score

N/A

Malware Config

Signatures

Files

wallpaper64.exe
.exe windows x64

bd1440814d4856bf392f7298e765b030

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetModuleHandleW
FreeLibrary
VerifyVersionInfoW
SetDllDirectoryW
VirtualQuery
SetUnhandledExceptionFilter
Sleep
GetWindowsDirectoryW
SetLastError
FormatMessageW
LocalFree
GetModuleHandleA
QueryPerformanceFrequency
QueryPerformanceCounter
GetLocalTime
LoadLibraryExA
GetSystemInfo
GetCurrentProcessId
VerSetConditionMask
GetProcAddress
SetCurrentDirectoryW
CloseHandle
LoadLibraryW
QueryDepthSList
InterlockedPopEntrySList
ReleaseSemaphore
VirtualFree
VirtualProtect
VirtualAlloc
GetVersionExW
GetThreadTimes
UnregisterWait
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
Process32Next
SetThreadPriority
SwitchToThread
SignalObjectAndWait
CreateTimerQueue
WaitForSingleObject
GetTimeZoneInformation
HeapSize
SetStdHandle
GetProcessHeap
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
OutputDebugStringW
GetConsoleMode
GetConsoleCP
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
FreeLibraryAndExitThread
ExitThread
CreateThread
HeapFree
HeapReAlloc
HeapAlloc
GetACP
ExitProcess
WriteConsoleW
GetModuleHandleExW
GetModuleFileNameA
GetFileType
GetStdHandle
GetDriveTypeW
InterlockedFlushSList
GetVersionExA
LoadLibraryA
GetLastError
CreateToolhelp32Snapshot
OpenProcess
ReleaseMutex
GetCurrentThreadId
GetThreadPriority
CreateFileW
InterlockedPushEntrySList
RaiseException
RtlPcToFileHeader
RtlUnwindEx
LoadLibraryExW
CreateMutexW
GetProductInfo
GetModuleFileNameW
TerminateProcess
GetCurrentProcess
GetLongPathNameW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetCPInfo
SetPriorityClass
ReadConsoleW
Process32First
GetTickCount
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DecodePointer
EncodePointer
GetNativeSystemInfo
GetExitCodeThread
GetCurrentThread
DuplicateHandle
TryEnterCriticalSection
GetStringTypeW
ResumeThread
GetThreadId
FatalAppExitA
GetExitCodeProcess
CreateProcessW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
InitializeSListHead
FormatMessageA
CreateDirectoryW
FindFirstFileW
GetFullPathNameW
FindNextFileW
DeviceIoControl
RemoveDirectoryW
SetEndOfFile
FindClose
GetFileAttributesW
DeleteFileW
GetCurrentDirectoryW
SetFilePointerEx
CopyFileW
GetVolumePathNamesForVolumeNameW
GetFileTime
CreateDirectoryExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
ReadFile
CreateNamedPipeA
WriteFile
PeekNamedPipe
CancelSynchronousIo
ConnectNamedPipe
RegisterWaitForSingleObject
GetProcessId
UnregisterWaitEx

user32

GetMenuItemInfoW
CloseWindow
LoadMenuW
GetWindow
InsertMenuItemW
SetWindowPos
CopyImage
GetMenuItemCount
GetIconInfo
SendMessageW
CreatePopupMenu
TrackPopupMenu
GetSubMenu
DestroyIcon
SetMenuItemInfoW
SetMenuDefaultItem
DestroyMenu
ChangeWindowMessageFilter
InsertMenuW
PostQuitMessage
SetWinEventHook
RegisterWindowMessageW
UnhookWinEvent
SetForegroundWindow
LoadImageW
GetCursorPos
GetWindowLongW
SetPropA
PostMessageW
FindWindowExW
MonitorFromWindow
EnumChildWindows
GetClassNameA
LoadStringW
IsWindow
FindWindowExA
GetForegroundWindow
GetPropA
EnumWindows
SetWindowLongW
SetLayeredWindowAttributes
EndPaint
SystemParametersInfoW
GetAncestor
IsIconic
GetWindowThreadProcessId
GetMessageW
DefWindowProcW
SetProcessDefaultLayout
GetWindowRect
SendMessageTimeoutW
DestroyWindow
GetDC
MessageBoxW
CreateWindowExW
UnregisterClassW
ShowWindow
DispatchMessageW
SetTimer
RegisterClassW
MessageBoxA
BringWindowToTop
RegisterClassExW
AttachThreadInput
GetClientRect
FillRect
SetParent
GetAsyncKeyState
ScreenToClient
PostThreadMessageW
CallNextHookEx
WindowFromPoint
SetWindowsHookExW
UnhookWindowsHookEx
GetMonitorInfoW
EnumDisplayMonitors
TranslateMessage
FindWindowW
LoadCursorW
wsprintfW
KillTimer
BeginPaint
PeekMessageW
GetWindowLongPtrW
GetDesktopWindow
SetWindowLongPtrW
FindWindowA
ReleaseDC
IsWindowVisible
UpdateLayeredWindow

gdi32

DeleteDC
SetBitmapBits
GetObjectW
BitBlt
CreateCompatibleBitmap
SelectObject
DeleteObject
CreateCompatibleDC
GetStockObject
SwapBuffers
ChoosePixelFormat
SetPixelFormat

shell32

Shell_NotifyIconW
ShellExecuteExW
SetCurrentProcessExplicitAppUserModelID
ShellExecuteW

advapi32

RegDeleteValueA
RegCloseKey
RegSetValueExA
RegOpenKeyExA
GetUserNameW

d3d11

D3D11CreateDevice

d3d9

Direct3DCreate9

d3dcompiler_43

D3DCompile
D3DReflect

d3dx9_43

D3DXCompileShader
D3DXMatrixPerspectiveFovRH

dwmapi

DwmSetWindowAttribute
DwmIsCompositionEnabled
DwmGetWindowAttribute

opengl32

glDisable
glViewport
glFrontFace
glDrawBuffer
wglGetProcAddress
wglGetCurrentDC
glGetString
wglCreateContext
wglDeleteContext
wglMakeCurrent
glReadBuffer
glTexParameterf
glGetFloatv
glTexParameteri
glTexImage2D
glBindTexture
glGenTextures
glDeleteTextures
glDrawArrays
glDrawElements
glBlendFunc
glCullFace
glDepthMask
glColorMask
glDepthFunc
glClearColor
glClear
glEnable

winmm

PlaySoundW

wtsapi32

WTSRegisterSessionNotification
WTSUnRegisterSessionNotification

msimg32

AlphaBlend

ole32

CoUninitialize
PropVariantClear
CoCreateInstance
CoTaskMemFree
CoInitializeEx

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 330KB - Virtual size: 330KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd1440814d4856bf392f7298e765b030

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

d3d11

d3d9

d3dcompiler_43

d3dx9_43

dwmapi

opengl32

winmm

wtsapi32

msimg32

ole32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 330KB - Virtual size: 330KB

.data Size: 19KB - Virtual size: 60KB

.pdata Size: 49KB - Virtual size: 48KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 44KB - Virtual size: 44KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 330KB - Virtual size: 330KB

.data
Size: 19KB - Virtual size: 60KB

.pdata
Size: 49KB - Virtual size: 48KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 44KB - Virtual size: 44KB

.reloc
Size: 8KB - Virtual size: 7KB