MocuMocuDance[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

MocuMocuDance.exe
Size

2.3MB
MD5

0fad7952642018f21310fb68a11bbcf7
SHA1

0d963e6636f48e600be986f0007ccc91fbbc03e5
SHA256

e64b51a62957dccdaeb1a02dd812aaa56162d2c1d17eebc21cfcf5f35160757a
SHA512

df86d7dcbdaeb54b36fd0398bdda2e76bda9292b9805ef5d579255596f3e3f0e639ed4b0929c5930a1ad3a967606f708dd3487f059e189c263cfd2263a3fc62c
SSDEEP

49152:JOgAYoZiRUwWF5PcGuqsLrTrhKc8jy/j:HjoZiUwqPcGu7h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MocuMocuDance.exe

Files

MocuMocuDance.exe
.exe windows:6 windows x86 arch:x86

5023707ff1ff31953d9206bbc5886a52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadPriority
ExitProcess
GetModuleFileNameA
SetCurrentDirectoryA
Sleep
OutputDebugStringA
FindFirstFileA
FindNextFileA
FindClose
GetCurrentDirectoryA
CreateDirectoryA
MultiByteToWideChar
GetUserDefaultUILanguage
LoadLibraryA
GetProcAddress
FreeLibrary
QueryPerformanceFrequency
QueryPerformanceCounter
GetFullPathNameW
WriteConsoleW
HeapReAlloc
HeapSize
GetStringTypeW
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetTimeZoneInformation
SetEndOfFile
SetStdHandle
FlushFileBuffers
LCMapStringW
CompareStringW
HeapFree
HeapAlloc
GetConsoleCP
ReadConsoleW
GetConsoleMode
ReadFile
WriteFile
GetStdHandle
GetFileType
SetFilePointerEx
ExitThread
RtlUnwind
CreateEventA
ResetEvent
CloseHandle
SetEvent
WaitForSingleObject
WaitForMultipleObjects
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetTickCount
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
VirtualProtect
GetVersionExW
LoadLibraryExW
GetModuleFileNameW
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
SignalObjectAndWait
CreateTimerQueue
CreateFileW
SearchPathW
GetModuleHandleA
GetVersionExA
GetThreadPriority
CreateThread
lstrcmpW
VirtualFree
VirtualAlloc
ReleaseSemaphore
InitializeSListHead
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThread
GetCurrentProcess
WaitForSingleObjectEx
DuplicateHandle
GetModuleHandleW
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SwitchToThread
CreateEventW
InitializeCriticalSectionAndSpinCount
SetLastError
WideCharToMultiByte
FormatMessageW
TryEnterCriticalSection
GetModuleHandleExW
QueueUserWorkItem
GetLastError
IsProcessorFeaturePresent
GetCurrentThreadId
RaiseException
DecodePointer
EncodePointer
GetTickCount64
LoadLibraryW

user32

IsIconic
GetWindowTextA
IsWindowVisible
GetCursorPos
GetQueueStatus
GetClientRect
ClientToScreen
ScreenToClient
GetDC
GetWindowRect
PeekMessageA
TranslateMessage
DispatchMessageA
PostThreadMessageA
RegisterWindowMessageA
MsgWaitForMultipleObjects
ReleaseDC
GetKeyboardState
EnumWindows
SetWindowPos
CreateWindowExA
UnregisterClassA
RegisterClassExA
SetTimer
KillTimer
GetDesktopWindow
DialogBoxParamA
SetWindowLongA
SendMessageW
EndDialog
GetWindowLongA
SetWindowTextA
SendMessageA
GetDlgItem
EnableWindow
MessageBoxA
LoadCursorA
GetSystemMetrics
GetActiveWindow
ShowWindow
DefWindowProcA
SetFocus
LoadIconA
PostQuitMessage
GetKeyState
DestroyWindow

gdi32

CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
DeleteDC
DeleteObject
SelectObject
SetTextColor
TextOutA
SetBkMode
SetBkColor
GetStockObject
BitBlt

shell32

DragFinish
DragQueryFileA
DragAcceptFiles

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance
CoInitialize
CoFreeUnusedLibraries
CoTaskMemAlloc
CoTaskMemFree

d3d11

D3D11CreateDevice

winmm

timeKillEvent
timeSetEvent
timeBeginPeriod
timeEndPeriod
timeGetDevCaps
timeGetTime

x3daudio1_7

X3DAudioCalculate
X3DAudioInitialize

openvr_api

VR_GetGenericInterface
VR_ShutdownInternal
VR_IsInterfaceVersionValid
VR_InitInternal2
VR_GetInitToken

leap

?onInit@Listener@Leap@@UAEXABVController@2@@Z
?onDisconnect@Listener@Leap@@UAEXABVController@2@@Z
?onExit@Listener@Leap@@UAEXABVController@2@@Z
?onFocusGained@Listener@Leap@@UAEXABVController@2@@Z
?onFocusLost@Listener@Leap@@UAEXABVController@2@@Z
?onServiceConnect@Listener@Leap@@UAEXABVController@2@@Z
?onServiceDisconnect@Listener@Leap@@UAEXABVController@2@@Z
?onDeviceChange@Listener@Leap@@UAEXABVController@2@@Z
?onImages@Listener@Leap@@UAEXABVController@2@@Z
?onServiceChange@Listener@Leap@@UAEXABVController@2@@Z
?onDeviceFailure@Listener@Leap@@UAEXABVController@2@@Z
?onLogMessage@Listener@Leap@@UAEXABVController@2@W4MessageSeverity@2@_JPBD@Z
?bone@Finger@Leap@@QBE?AVBone@2@W4Type@32@@Z
?type@Finger@Leap@@QBE?AW4Type@12@XZ
?direction@Arm@Leap@@QBE?AUVector@2@XZ
?elbowPosition@Arm@Leap@@QBE?AUVector@2@XZ
?wristPosition@Arm@Leap@@QBE?AUVector@2@XZ
?hands@Frame@Leap@@QBE?AVHandList@2@XZ
?images@Frame@Leap@@QBE?AVImageList@2@XZ
?count@FingerList@Leap@@QBEHXZ
??AFingerList@Leap@@QBE?AVFinger@1@H@Z
??0Controller@Leap@@QAE@XZ
??1Controller@Leap@@UAE@XZ
??1Listener@Leap@@UAE@XZ
?addListener@Controller@Leap@@QAE_NAAVListener@2@@Z
?removeListener@Controller@Leap@@QAE_NAAVListener@2@@Z
?frame@Controller@Leap@@QBE?AVFrame@2@H@Z
??AImageList@Leap@@QBE?AVImage@1@H@Z
?count@HandList@Leap@@QBEHXZ
??AHandList@Leap@@QBE?AVHand@1@H@Z
?prevJoint@Bone@Leap@@QBE?AUVector@2@XZ
?nextJoint@Bone@Leap@@QBE?AUVector@2@XZ
?direction@Bone@Leap@@QBE?AUVector@2@XZ
?basis@Bone@Leap@@QBE?AUMatrix@2@XZ
?data@Image@Leap@@QBEPBEXZ
?width@Image@Leap@@QBEHXZ
?height@Image@Leap@@QBEHXZ
?fingers@Hand@Leap@@QBE?AVFingerList@2@XZ
?palmPosition@Hand@Leap@@QBE?AUVector@2@XZ
?palmNormal@Hand@Leap@@QBE?AUVector@2@XZ
?direction@Hand@Leap@@QBE?AUVector@2@XZ
?arm@Hand@Leap@@QBE?AVArm@2@XZ
?isLeft@Hand@Leap@@QBE_NXZ
?isRight@Hand@Leap@@QBE_NXZ
?isValid@Hand@Leap@@QBE_NXZ
??1Interface@Leap@@MAE@XZ
?width@Pointable@Leap@@QBEMXZ
?length@Pointable@Leap@@QBEMXZ
?setPolicy@Controller@Leap@@QBEXW4PolicyFlag@12@@Z
??0Listener@Leap@@QAE@XZ

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 345KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5023707ff1ff31953d9206bbc5886a52

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

d3d11

winmm

x3daudio1_7

openvr_api

leap

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 345KB - Virtual size: 345KB

.data Size: 47KB - Virtual size: 52KB

.rsrc Size: 140KB - Virtual size: 139KB

.reloc Size: 59KB - Virtual size: 59KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 345KB - Virtual size: 345KB

.data
Size: 47KB - Virtual size: 52KB

.rsrc
Size: 140KB - Virtual size: 139KB

.reloc
Size: 59KB - Virtual size: 59KB