AudioRecorder Moo0 v1[.]46 Installer[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

AudioRecorder Moo0 v1.46 Installer.exe
Size

3.5MB
MD5

31b49193ccf7b2c7c6ddeb6aa6e3a9a9
SHA1

892f1c8fefb45ff0941475b9cdb7dc9c05a020e4
SHA256

8306b09bf5f64ed694ccd8ab97cd139209434e1f807746950c8e3e043e699893
SHA512

0a91aab8d14ffd2ae0bb359e6f9928556f137e6066cb2993d26237fa5c318c7fecd5254b84065b3612fec627c5a23aeb9095cc28f606f10b06ac47be32671f1d
SSDEEP

98304:O4+wXygxExG0VnfvHOQTklG1DTEGZGLdDi5y2M7dniBMr9f:O4FiSEjHOH+DRZMDH2Mk4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AudioRecorder Moo0 v1.46 Installer.exe

Files

AudioRecorder Moo0 v1.46 Installer.exe
.exe windows x86

d647eb98f91df27c1ea395eea6ec654b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoRevokeClassObject
StgCreateDocfileOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
OleFlushClipboard
OleGetClipboard
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoCreateGuid
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize
CoRegisterMessageFilter
CoInitializeSecurity

user32

IsDialogMessageW
SetWindowTextW
MoveWindow
WinHelpW
LoadIconW
UnhookWindowsHookEx
GetTopWindow
GetClassNameW
GetClassLongW
EqualRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollRange
GetScrollPos
SetScrollPos
EndPaint
BeginPaint
SetActiveWindow
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
GetLastActivePopup
IsWindowEnabled
CallNextHookEx
SetWindowsHookExW
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
DestroyMenu
GetFocus
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
SetRectEmpty
SendDlgItemMessageA
CharUpperW
GetSysColorBrush
IsRectEmpty
IntersectRect
GetMonitorInfoW
GetWindowThreadProcessId
WindowFromPoint
MonitorFromWindow
MonitorFromRect
SetRect
EnumDisplayMonitors
CopyRect
GetSystemMetrics
GetParent
GetMenuInfo
RegisterClassExW
GetForegroundWindow
MessageBeep
CreateCursor
GetNextDlgGroupItem
InvalidateRgn
TabbedTextOutW
DrawTextW
GetClassInfoExW
DrawTextExW
GrayStringW
PostThreadMessageW
UpdateWindow
UnregisterHotKey
RegisterHotKey
SetWindowLongW
PostMessageW
CopyAcceleratorTableW
IsZoomed
IsIconic
SetWindowRgn
PtInRect
GetWindowLongW
LoadCursorW
SetCursor
GetCursorPos
GetAsyncKeyState
OffsetRect
SetTimer
KillTimer
ReleaseDC
GetDC
CharNextW
RealChildWindowFromPoint
ReleaseCapture
GetCapture
SystemParametersInfoW
DefWindowProcW
RedrawWindow
ClientToScreen
RegisterClipboardFormatW
GetWindowRect
DrawIconEx
GetIconInfo
GetDesktopWindow
GetNextDlgTabItem
wsprintfW
MessageBoxW
DrawMenuBar
GetClientRect
SetCapture
DestroyIcon
SetClipboardViewer
ChangeClipboardChain
InvalidateRect
EndDialog
CreateIconFromResource
CreateIconFromResourceEx
CreateDialogIndirectParamW
InflateRect
GetWindowDC
SendMessageW
SetFocus
SetForegroundWindow
ShowWindow
IsWindow
CheckMenuItem
GetSysColor
EnableWindow
UnregisterClassW
LoadBitmapW

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
VariantCopy
SysAllocStringLen
VariantChangeType
SysStringLen
OleCreateFontIndirect
SafeArrayDestroy
VariantClear
VariantInit
SysFreeString
SysAllocString

shell32

SHGetDesktopFolder
ord155
ord716
SHGetSpecialFolderLocation
SHChangeNotify
DragAcceptFiles
SHFileOperationW
SHGetFileInfoW
ord190
ord162
SHGetPathFromIDListW
SHGetMalloc
DragQueryFileW
DragFinish
Shell_NotifyIconW
SHBrowseForFolderW
ShellExecuteW
ShellExecuteExW

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
GetUserNameW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
GetSidIdentifierAuthority
GetTokenInformation
OpenProcessToken
GetSidSubAuthority
GetSidSubAuthorityCount
IsValidSid

kernel32

GetLastError
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
DeleteCriticalSection
GetProcessHeap
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
MultiByteToWideChar
GetOEMCP
CloseHandle
InterlockedDecrement
GetModuleFileNameW
GetCurrentProcessId
SetProcessWorkingSetSize
GetCurrentProcess
SetPriorityClass
CreateFileW
WriteFile
WaitForSingleObject
EnumResourceTypesW
EnumResourceNamesW
FindResourceExW
SizeofResource
EnumResourceLanguagesW
FreeLibrary
BeginUpdateResourceW
UpdateResourceW
EndUpdateResourceW
LoadLibraryW
LoadResource
LockResource
FreeResource
GetSystemTimeAsFileTime
FindResourceW
GetProcAddress
GetEnvironmentStringsW
LocalFree
SetLastError
lstrlenW
ExpandEnvironmentStringsW
SuspendThread
CreateThread
TerminateThread
ResumeThread
GetThreadPriority
SetThreadPriority
GetVolumeInformationW
GetFileAttributesExW
GetFileInformationByHandle
GetFileAttributesW
SetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
GetDiskFreeSpaceW
SetFileTime
MoveFileExW
VirtualAlloc
VirtualFree
DeleteFileW
RemoveDirectoryW
CopyFileW
GetTempPathW
GetTempFileNameW
EnumSystemCodePagesW
GetCPInfoExW
GetUserDefaultUILanguage
GetSystemDefaultLangID
GetTimeZoneInformation
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalFileTimeToFileTime
GetModuleHandleW
GetVersionExW
lstrcpyW
GlobalAddAtomW
ReadFile
CreateToolhelp32Snapshot
Process32FirstW
OpenProcess
Process32NextW
SetFilePointerEx
FlushFileBuffers
SetEndOfFile
GlobalLock
GlobalUnlock
GetCurrentThreadId
TerminateProcess
GetFileSize
SetFilePointer
GetStdHandle
CreateDirectoryW
InitializeCriticalSectionAndSpinCount
GetFullPathNameW
GetCurrentDirectoryW
GetSystemInfo
CreateEventW
SetEvent
ResetEvent
WaitForMultipleObjects
GetACP
OutputDebugStringA
GetModuleHandleA
GetCurrentThread
LoadLibraryExW
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpW
CompareStringA
GetTickCount
GlobalFree
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
EncodePointer
LoadLibraryA
GlobalFindAtomW
MulDiv
GetProfileIntW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GlobalFlags
GetThreadLocale
LockFile
UnlockFile
DuplicateHandle
VirtualProtect
SetErrorMode
GetFileSizeEx
GetFileTime
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
HeapFree
IsValidCodePage
FindFirstFileExW
ReadConsoleW
FreeEnvironmentStringsW
GetConsoleMode
GetConsoleCP
SetStdHandle
GetStringTypeW
LCMapStringW
ExitProcess
HeapQueryInformation
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
PeekNamedPipe
GetFileType
GetDriveTypeW
QueryPerformanceFrequency
VirtualQuery
RtlUnwind
OutputDebugStringW
HeapSize
Sleep
InitializeCriticalSection
GetSystemDirectoryW
GetCPInfo
SetEnvironmentVariableA
FormatMessageW
WriteConsoleW

gdi32

EndDoc
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetBkColor
CreateDCW
SetViewportOrgEx
SetViewportExtEx
StartDocW
GetDeviceCaps
SetBkMode
GetStockObject
RestoreDC
SaveDC
ExtSelectClipRgn
CreateBitmap
SetBkColor
EndPage
SetMapMode
SetStretchBltMode
CreateSolidBrush
StretchBlt
GetStretchBltMode
GetTextExtentPoint32W
GetViewportExtEx
SetTextColor
CreateFontIndirectW
BitBlt
SetWindowExtEx
StartPage
GetPaletteEntries
GetCurrentObject
OffsetViewportOrgEx
DeleteDC
SetDIBColorTable
GetDIBColorTable
SelectObject
CreateCompatibleDC
CreateDIBSection
GetObjectW
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
ExcludeClipRect
GetClipBox
GetRgnBox
GetTextColor
GetWindowExtEx
GetMapMode
DeleteObject
DPtoLP

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCW
PathFindFileNameW
PathFindExtensionW
StrFormatByteSizeW
PathStripToRootW

oledlg

OleUIBusyW

urlmon

URLDownloadToFileW
URLDownloadToCacheFileW

wininet

InternetGetConnectedState
InternetOpenW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
HttpQueryInfoW
InternetReadFile
InternetCloseHandle

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 347KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d647eb98f91df27c1ea395eea6ec654b

Headers

DLL Characteristics

File Characteristics

Imports

ole32

user32

oleaut32

shell32

advapi32

kernel32

gdi32

winspool.drv

comctl32

shlwapi

oledlg

urlmon

wininet

oleacc

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 347KB - Virtual size: 346KB

.data Size: 28KB - Virtual size: 165KB

_RDATA Size: 4KB - Virtual size: 3KB

.rsrc Size: 1.9MB - Virtual size: 1.9MB

.reloc Size: 81KB - Virtual size: 80KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 347KB - Virtual size: 346KB

.data
Size: 28KB - Virtual size: 165KB

_RDATA
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

.reloc
Size: 81KB - Virtual size: 80KB