Veedub64[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Veedub64.exe
Size

4.1MB
MD5

f91be69d1e39489893414d9e0e93c79c
SHA1

4f1d33ca8ccb2fccca39b0f16fd329dd870a187d
SHA256

34ef19064f2e0f3b2f3c6f57a3c5f10712e6076b68dd20a81b64382bbfc81279
SHA512

6fbd7eb74b3a89662e39681c6fd9e602a3ba84e699118f1bdfbfcf507068024087b8d3d72a5a61f245d6e215ac45b9e081a60fe0977531d759ef81cb87210e04
SSDEEP

49152:EAlv7uGyTwjYL7nHqMM26ucx2AZvh5DjUHfSk8nIdjrSqh4wyJ3ckN+PJucTfQZf:1sH7M2sClSigpApv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Veedub64.exe

Files

Veedub64.exe
.exe windows x64

472c87fee29265a6ce469a62c0a330d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

winmm

waveOutReset
waveOutUnprepareHeader
waveOutClose
waveOutOpen
waveOutPrepareHeader
waveOutPause
waveOutGetPosition
waveOutWrite
waveOutRestart
waveInGetDevCapsA
mixerOpen
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
waveInOpen
waveInPrepareHeader
waveInAddBuffer
waveInStart
waveInReset
waveInUnprepareHeader
waveInClose
mixerSetControlDetails
mixerClose
timeGetTime
timeBeginPeriod
timeSetEvent
timeEndPeriod
timeKillEvent
timeGetDevCaps
waveOutGetDevCapsA
waveOutGetNumDevs
DefDriverProc

msvfw32

ICImageDecompress
ICDecompress
ICCompress
ICRemove
ICGetInfo
ICSendMessage
ICOpen
ICClose
ICInfo

avifil32

AVIFileOpenW
AVIFileExit
AVIFileInit
AVIStreamBeginStreaming
AVIStreamEndStreaming
AVIStreamInfoA
AVIStreamFindSample
AVIStreamRead
AVIStreamStart
AVIStreamLength
AVIStreamReadFormat
AVIFileRelease
AVIFileGetStream

msacm32

acmStreamOpen
acmStreamUnprepareHeader
acmStreamConvert
acmStreamPrepareHeader
acmStreamSize
acmDriverID
acmStreamClose
acmMetrics
acmDriverEnum
acmDriverOpen
acmFormatTagEnumA
acmDriverClose
acmDriverMessage
acmDriverDetailsA
acmFormatEnumA
acmFormatSuggest
acmFormatDetailsA

comctl32

ImageList_Add
ord6
ImageList_Destroy
ord16
ImageList_Create
ord17

kernel32

GetVersionExA
GetVersion
SetPriorityClass
ExitProcess
ReleaseSemaphore
GetLastError
SetFilePointer
GetStdHandle
FindClose
FindNextFileA
FindFirstFileA
GetComputerNameA
OpenProcess
GetSystemTimeAsFileTime
GetLocalTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCommandLineW
DeleteFileA
LoadLibraryW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetProcessTimes
GetVolumeInformationW
FindResourceExA
CreateProcessW
DeleteFileW
MapViewOfFile
OpenFileMappingA
UnmapViewOfFile
IsDebuggerPresent
GetThreadPriority
GetPriorityClass
GetWindowsDirectoryA
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
FlushFileBuffers
GetExitCodeProcess
GenerateConsoleCtrlEvent
CreateFileMappingA
WaitForMultipleObjects
CreatePipe
GlobalMemoryStatusEx
OutputDebugStringA
GetSystemDirectoryW
GetProcessAffinityMask
RaiseException
SetEvent
CreateSemaphoreA
GetThreadContext
CreateEventA
MultiByteToWideChar
SetLastError
QueryPerformanceCounter
FormatMessageA
GetFileAttributesA
GetFileAttributesW
FindFirstFileW
CreateDirectoryA
CreateDirectoryW
GetModuleFileNameW
FindNextFileW
GetLongPathNameW
GetDiskFreeSpaceW
GetDiskFreeSpaceA
GetDriveTypeW
SetEndOfFile
SystemTimeToTzSpecificLocalTime
GetDateFormatW
GetTimeFormatW
QueryPerformanceFrequency
FindCloseChangeNotification
FindNextChangeNotification
FindFirstChangeNotificationW
GetWindowsDirectoryW
GetOverlappedResult
FlushInstructionCache
EnumResourceNamesA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetStdHandle
HeapSize
GetFileType
SetHandleCount
LCMapStringW
LCMapStringA
RtlCaptureContext
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapCreate
HeapSetInformation
FlsAlloc
FlsFree
FlsSetValue
FlsGetValue
GetStartupInfoA
GetProcessHeap
GetCommandLineA
CreateThread
ExitThread
HeapReAlloc
RtlPcToFileHeader
HeapFree
HeapAlloc
RtlUnwindEx
RtlLookupFunctionEntry
SetUnhandledExceptionFilter
SuspendThread
ResumeThread
UnhandledExceptionFilter
TerminateProcess
CreateFileW
GetCurrentThreadId
GetCurrentThread
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
RtlVirtualUnwind
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
DuplicateHandle
GetSystemInfo
ReadProcessMemory
WriteFile
LoadLibraryA
GetCurrentProcess
CreateFileA
GetFileSize
ReadFile
CloseHandle
VirtualQuery
GetModuleFileNameA
GetFullPathNameA
__C_specific_handler
GetModuleHandleA
GetProcAddress
VirtualProtect
GetTickCount
GetCurrentProcessId
MoveFileW
VirtualAlloc
VirtualFree
FreeLibrary
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
SetThreadPriority
Sleep
MulDiv
FindResourceA
LoadResource
LockResource
SizeofResource
FreeResource
PeekNamedPipe

user32

SetCapture
GetMessagePos
GetDialogBaseUnits
SetScrollInfo
GetScrollInfo
ScrollWindow
HideCaret
ShowCaret
SetScrollRange
SetScrollPos
SetCaretPos
DestroyCaret
CreateCaret
GetWindowTextLengthA
GetFocus
ShowCursor
SetCursorPos
IsWindowEnabled
GetCapture
GetDCEx
AppendMenuW
SetMenuItemInfoW
CallWindowProcW
DrawTextW
GetWindowTextW
GetWindowTextLengthW
GetMenuItemInfoW
LockWindowUpdate
InvertRect
GetNextDlgTabItem
CopyAcceleratorTableA
GetKeyNameTextA
GetKeyNameTextW
MapVirtualKeyA
CreateAcceleratorTableA
CreateDialogIndirectParamA
CreateDialogIndirectParamW
DefDlgProcA
DefDlgProcW
GetClassLongA
DrawFrameControl
GetSystemMenu
CreateMenu
SetRect
DestroyAcceleratorTable
GetAsyncKeyState
CreatePopupMenu
SetMenuItemInfoA
SetMenu
GetMenuItemInfoA
RemoveMenu
InsertMenuItemA
InsertMenuItemW
DrawMenuBar
GetKeyState
ReleaseCapture
GetMenu
GetMenuItemCount
DeleteMenu
EnableMenuItem
CheckMenuItem
EnumDisplaySettingsA
RedrawWindow
GetMessageA
ExitWindowsEx
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
InflateRect
GetWindowLongPtrW
SetWindowLongPtrW
GetDlgItemTextA
PostThreadMessageA
SetForegroundWindow
WaitMessage
CreateWindowExW
DialogBoxParamW
SetWindowsHookExA
CallNextHookEx
TranslateAcceleratorA
BeginDeferWindowPos
EndDeferWindowPos
DeferWindowPos
SetWindowTextW
LoadImageA
IsZoomed
GetWindowPlacement
SetWindowPlacement
UnhookWindowsHookEx
IsWindow
IsDialogMessageA
GetDlgItemInt
SetDlgItemInt
AdjustWindowRectEx
PtInRect
ClientToScreen
GetSysColor
LoadAcceleratorsA
DrawTextA
GetClassLongPtrA
LoadStringA
LoadCursorA
RegisterClassA
AdjustWindowRect
CreateWindowExA
UnregisterClassA
DefWindowProcA
PeekMessageA
TranslateMessage
SystemParametersInfoA
GetWindow
SetCursor
GetCursorPos
RegisterHotKey
DrawEdge
UnregisterHotKey
GetWindowTextA
ScrollWindowEx
RegisterClassW
SendDlgItemMessageW
TrackPopupMenuEx
CheckMenuRadioItem
DefWindowProcW
MessageBoxW
UnregisterClassW
GetCursorInfo
GetIconInfo
DispatchMessageA
IsWindowUnicode
SendMessageW
MapWindowPoints
CallWindowProcA
CreateDialogParamW
IsIconic
GetForegroundWindow
GetWindowThreadProcessId
ScreenToClient
CreateDialogParamA
KillTimer
SetWindowLongA
MapDialogRect
ScrollDC
ReleaseDC
IntersectRect
DestroyWindow
MsgWaitForMultipleObjects
PostQuitMessage
wvsprintfA
MessageBeep
GetSubMenu
TrackPopupMenu
LoadMenuA
DestroyMenu
SetWindowTextA
MessageBoxA
CheckDlgButton
SetTimer
GetParent
GetWindowRect
GetSystemMetrics
SetWindowPos
SetFocus
DialogBoxParamA
SendDlgItemMessageA
IsDlgButtonChecked
GetWindowLongPtrA
EnableWindow
OffsetRect
UnionRect
InvalidateRect
EndDialog
GetDlgItem
wsprintfA
SetDlgItemTextA
SendMessageA
UpdateWindow
GetClientRect
GetDC
EnumChildWindows
LoadIconA
FillRect
DrawIcon
SetWindowLongPtrA
BeginPaint
EndPaint
PostMessageA
GetWindowLongA
ShowWindow
TrackMouseEvent

gdi32

SaveDC
StretchDIBits
LineTo
MoveToEx
SetTextAlign
GetTextMetricsA
Polygon
TextOutA
RestoreDC
ExcludeClipRect
GetObjectA
SetBkMode
OffsetViewportOrgEx
GetClipBox
ExtTextOutW
RectVisible
GetTextExtentExPointW
Ellipse
PolylineTo
CreateFontIndirectA
GetDeviceCaps
Rectangle
ExtSelectClipRgn
OffsetClipRgn
CreateBitmap
SetDIBitsToDevice
GetDIBits
GetSystemPaletteEntries
CreatePalette
GetNearestPaletteIndex
RealizePalette
SelectPalette
SetTextColor
CreateSolidBrush
PolyPolyline
ExtTextOutA
CreateFontA
GdiFlush
SelectObject
DeleteObject
DeleteDC
GetStockObject
SetDIBits
CreateCompatibleBitmap
StretchBlt
SwapBuffers
SetPixelFormat
ChoosePixelFormat
Polyline
GetTextExtentPoint32A
CreatePen
GetTextExtentPoint32W
SetBkColor
CreateCompatibleDC
CreateDIBSection
BitBlt
SetStretchBltMode

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameW
CommDlgExtendedError
ChooseColorA

advapi32

RegCloseKey
AdjustTokenPrivileges
OpenProcessToken
RegQueryValueExW
RegEnumValueA
RegEnumKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExW
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
LookupPrivilegeValueA

shell32

DragQueryFileW
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
DragAcceptFiles
DragFinish
DragQueryFileA
SHGetSpecialFolderPathW
ShellExecuteA

ole32

CreateItemMoniker
GetRunningObjectTable
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoGetObject
CoInitializeEx
CoUninitialize
CoInitialize

shlwapi

SHDeleteKeyA

oleaut32

SysFreeString
OleCreatePropertyFrame

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.const
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 839KB - Virtual size: 839KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

472c87fee29265a6ce469a62c0a330d0

Headers

DLL Characteristics

File Characteristics

Imports

winmm

msvfw32

avifil32

msacm32

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

oleaut32

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.const Size: 512B - Virtual size: 512B

.rdata Size: 839KB - Virtual size: 839KB

.data Size: 20KB - Virtual size: 170KB

.pdata Size: 178KB - Virtual size: 178KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 326KB - Virtual size: 326KB

.text
Size: 2.7MB - Virtual size: 2.7MB

.const
Size: 512B - Virtual size: 512B

.rdata
Size: 839KB - Virtual size: 839KB

.data
Size: 20KB - Virtual size: 170KB

.pdata
Size: 178KB - Virtual size: 178KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 326KB - Virtual size: 326KB