14edbeb023793388f57b04bada76c993ce1c10f1d9c9ee14e81e304d1ffc2fac

Sharing

Copy URL

Twitter E-mail

General

Target

14edbeb023793388f57b04bada76c993ce1c10f1d9c9ee14e81e304d1ffc2fac
Size

6.5MB
MD5

092c867f6faa5463e58941ac75cdbdc1
SHA1

ed9889d3374030f7ef5134f28c4ba07bfcdf9532
SHA256

14edbeb023793388f57b04bada76c993ce1c10f1d9c9ee14e81e304d1ffc2fac
SHA512

01b2a6ea23aef7b657ceab4e17bfda22b671601bfec9534480a67d6abdd2a29ea32b2569b09a2b71c41e70d8672fde32fdcd245ecce0bb9b83ed394e20988a75
SSDEEP

98304:F4BUZLmPvQ0ASfhC86nsThrb92qspENvoR07taOGoj9ghi1RebMIg9Cbk/V8n3fI:OBUZJVNsThSR07ta1ojDIg9Cbk/V8Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14edbeb023793388f57b04bada76c993ce1c10f1d9c9ee14e81e304d1ffc2fac

Files

14edbeb023793388f57b04bada76c993ce1c10f1d9c9ee14e81e304d1ffc2fac
.exe windows:5 windows x86 arch:x86

0447b82673dab51bdadefb5d8829dba8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\MyProg\VC\AutoMoment\AutoMoment\Release\AutoMoment.pdb

Imports

opengl32

glVertex2f
glColor3fv
glVertex4fv
glRasterPos3f
glEnd
glVertex3f
glBegin
wglMakeCurrent
glLineWidth
glTranslated
glColor3f
glFinish
glPopMatrix
glPushMatrix
glRotatef
glGetFloatv
glTranslatef
glOrtho
glLoadIdentity
glMatrixMode
glViewport
glDepthFunc
glClearDepth
glClear
glClearColor
wglCreateContext
glMaterialfv
glDisable
glShadeModel
glEnable
glLightf
glLightfv
wglDeleteContext

glut32

glutSolidCone
glutBitmapCharacter

kernel32

RaiseException
FindResourceExW
HeapReAlloc
ExitThread
CreateThread
HeapQueryInformation
HeapSize
SetStdHandle
GetFileType
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapCreate
SetHandleCount
GetStdHandle
IsValidCodePage
LCMapStringW
RtlUnwind
GetLocaleInfoW
GetTimeZoneInformation
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
CompareStringW
GetConsoleCP
GetConsoleMode
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
GetProcessHeap
CreateFileW
SetEnvironmentVariableA
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetDateFormatA
GetModuleFileNameA
WideCharToMultiByte
SizeofResource
GetTimeFormatA
VirtualQuery
VirtualAlloc
DecodePointer
EncodePointer
GetSystemTimeAsFileTime
HeapAlloc
GetLocalTime
GetStringTypeW
HeapFree
GetNumberFormatA
GetWindowsDirectoryA
VirtualProtect
SearchPathA
Sleep
SetErrorMode
GetOEMCP
GetCPInfo
GetTempPathA
GlobalFlags
GetACP
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
TlsGetValue
LocalAlloc
GetProfileIntA
GetSystemDirectoryW
GetCurrentDirectoryA
GlobalReAlloc
GetFileSizeEx
LocalFileTimeToFileTime
FileTimeToLocalFileTime
GetFileAttributesExA
GetDiskFreeSpaceA
GetTempFileNameA
GetFileTime
SetFileTime
ReplaceFileA
GetFileAttributesA
GetUserDefaultLCID
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
MoveFileA
lstrcmpiA
GetStringTypeExA
GlobalGetAtomNameA
GlobalFindAtomA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LoadLibraryW
lstrcmpW
ResumeThread
GlobalAddAtomA
GetTickCount
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GlobalDeleteAtom
GetCurrentThreadId
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
LockResource
LoadResource
FindResourceW
GetLocaleInfoA
LoadLibraryExA
CompareStringA
GetModuleHandleW
GetCurrentProcessId
SystemTimeToFileTime
FileTimeToSystemTime
GetThreadLocale
lstrcmpA
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
GetCurrentThread
SetThreadPriority
GetEnvironmentVariableA
GetShortPathNameA
MultiByteToWideChar
InterlockedExchange
EnterCriticalSection
LeaveCriticalSection
lstrlenW
ActivateActCtx
DeactivateActCtx
SetLastError
lstrcpyA
FreeResource
WriteFile
FindResourceA
InterlockedDecrement
InterlockedIncrement
MulDiv
FreeLibrary
LoadLibraryA
lstrcatA
GetSystemDirectoryA
lstrlenA
GetModuleHandleA
GetProcAddress
DeleteFileA
ReadFile
WaitForSingleObject
CreateProcessA
GetStartupInfoA
CreatePipe
GetSystemInfo
GetVersionExA
GetCurrentProcess
SetPriorityClass
GetLastError
CloseHandle
DeviceIoControl
CreateFileA
ExitProcess

user32

ToAsciiEx
RealChildWindowFromPoint
FrameRect
GetDoubleClickTime
GetIconInfo
ClipCursor
GetDCEx
SetLayeredWindowAttributes
EnumDisplayMonitors
DrawFrameControl
DrawEdge
UpdateLayeredWindow
DestroyAcceleratorTable
SetClassLongA
MapVirtualKeyA
GetKeyNameTextA
LockWindowUpdate
GetUpdateRect
UnionRect
LoadImageW
EmptyClipboard
CloseClipboard
SetClipboardData
CopyImage
OpenClipboard
DrawIconEx
GetMenuDefaultItem
WindowFromPoint
CreateMenu
CopyAcceleratorTableA
SendNotifyMessageA
SetParent
WindowFromDC
InSendMessage
IsClipboardFormatAvailable
IsMenu
GetMenuItemInfoA
GetSystemMenu
SetMenuDefaultItem
CharUpperA
DeleteMenu
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyIcon
LoadAcceleratorsA
IsIconic
InsertMenuItemA
CreatePopupMenu
IntersectRect
BringWindowToTop
TranslateAcceleratorA
LoadIconA
WinHelpA
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
GetKeyboardLayout
SetWindowPlacement
GetWindowPlacement
DefWindowProcA
CallWindowProcA
GetMenu
ShowOwnedPopups
GetMessageA
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
TranslateMessage
PostThreadMessageA
SetWindowsHookExA
CallNextHookEx
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetNextDlgTabItem
EndDialog
GetClassNameA
DrawStateA
SetFocus
SetWindowPos
ShowWindow
MoveWindow
GetDlgCtrlID
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
CheckDlgButton
GetWindow
LoadAcceleratorsW
DestroyMenu
GetClassInfoA
GetSysColorBrush
MonitorFromPoint
GetMonitorInfoA
SetWindowRgn
CopyRect
RegisterClipboardFormatA
OffsetRect
IsZoomed
MessageBoxA
UpdateWindow
EnableWindow
GetParent
SetWindowLongA
PostQuitMessage
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowTextLengthA
GetWindowTextA
RegisterWindowMessageA
MessageBeep
NotifyWinEvent
GetKeyboardState
CreateAcceleratorTableA
EnumChildWindows
DestroyCursor
DrawIcon
SetCursorPos
CopyIcon
CharUpperBuffA
SubtractRect
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
MapDialogRect
GetNextDlgGroupItem
GetAsyncKeyState
GetCursorPos
IsWindow
LoadCursorA
EnableScrollBar
HideCaret
MapWindowPoints
DrawFocusRect
InvertRect
UnhookWindowsHookEx
GetTabbedTextExtentW
IsCharLowerA
MapVirtualKeyExA
GetWindowRgn
SetScrollInfo
GetDlgItem
UnregisterClassA
GetWindowRect
ScreenToClient
SendMessageA
GetDC
FillRect
ReleaseDC
SetWindowTextA
GetClientRect
InvalidateRect
SetRect
PtInRect
RedrawWindow
LoadBitmapW
LoadImageA
ClientToScreen
GetSystemMetrics
SetRectEmpty
LoadMenuW
GetSubMenu
InflateRect
GetSysColor
IsChild
GetFocus
GetKeyState
EqualRect
IsRectEmpty
RegisterHotKey
SystemParametersInfoA
SetTimer
PostMessageA
UnregisterHotKey
keybd_event
IsWindowVisible
LoadIconW
GetWindowLongA
LoadCursorW
SetCursor
EnableMenuItem
CheckMenuItem
ReleaseCapture
SetCapture
GetCapture
RemoveMenu
GetMenuItemCount
InsertMenuA
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
DispatchMessageA
PeekMessageA
WaitMessage
KillTimer

gdi32

DeleteDC
SetDIBColorTable
CreateDIBSection
ExtCreatePen
GetDIBColorTable
SetStretchBltMode
SetBrushOrgEx
ChoosePixelFormat
SetPixelFormat
CreateFontA
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
CreateBitmap
SelectPalette
GetObjectType
CreateHatchBrush
CreateRoundRectRgn
SetRectRgn
CombineRgn
PatBlt
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
GetWindowOrgEx
GetTextColor
GetDIBits
RealizePalette
SetROP2
CreateEllipticRgn
CreatePolygonRgn
GetBkColor
Polyline
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetCharWidthA
StretchDIBits
RoundRect
CreateMetaFileA
CloseMetaFile
DeleteMetaFile
CreatePalette
GetPaletteEntries
OffsetRgn
GetRgnBox
EnumFontFamiliesExA
GetViewportOrgEx
GetTextAlign
GetNearestPaletteIndex
GetSystemPaletteEntries
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextFaceA
GetTextExtentPointA
GetTextExtentPoint32W
ExtFloodFill
SetPaletteEntries
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
SetPixelV
Polygon
TextOutA
Arc
SetTextAlign
GetTextMetricsA
SetTextColor
SetBkMode
SelectObject
CreatePen
LineTo
MoveToEx
StretchBlt
GetObjectA
Ellipse
BitBlt
UnrealizeObject
CreateSolidBrush
GetMapMode
LPtoDP
DPtoLP
DeleteObject
GetTextExtentPoint32A
CreateFontIndirectA
GetDeviceCaps
GetPixel
Rectangle
CreateCompatibleDC
SetDIBitsToDevice
SetPixel
CreateCompatibleBitmap
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
RectVisible
PtVisible
StartDocA
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetPolyFillMode
SetBkColor
RestoreDC
SaveDC
CreateRectRgnIndirect
GetStockObject
CreateDCA
CopyMetaFileA
SwapBuffers
ScaleWindowExtEx

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetOpenFileNameA
GetFileTitleA

winspool.drv

GetJobA
OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

GetFileSecurityA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegSetValueA
RegDeleteKeyA
RegEnumKeyA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyExA
SetFileSecurityA
RegOpenKeyExW
RegQueryValueA

shell32

SHGetMalloc
ShellExecuteExA
SHChangeNotify
DragFinish
DragQueryFileA
SHGetFileInfoA
ShellExecuteA
SHAddToRecentDocs
SHBrowseForFolderA
SHGetPathFromIDListA
DragAcceptFiles
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
ExtractIconA

comctl32

ImageList_GetIconSize

shlwapi

PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathRemoveFileSpecW

ole32

CoCreateInstance
RegisterDragDrop
CoInitialize
CoTaskMemFree
WriteFmtUserTypeStg
WriteClassStg
CoCreateGuid
OleGetIconOfClass
CoRegisterClassObject
CoRevokeClassObject
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
StgCreateDocfile
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateFileMoniker
StgOpenStorage
StgIsStorageFile
OleRegEnumVerbs
OleRegGetMiscStatus
CoDisconnectObject
OleIsRunning
GetRunningObjectTable
CoLockObjectExternal
OleRun
CreateItemMoniker
CoUninitialize
CoInitializeEx
OleLockRunning
OleSetMenuDescriptor
StgCreateDocfileOnILockBytes
OleSave
WriteClassStm
OleSaveToStream
CreateStreamOnHGlobal
OleCreateStaticFromData
OleCreate
OleLoad
GetHGlobalFromILockBytes
OleSetContainedObject
OleCreateFromFile
OleCreateLinkToFile
DoDragDrop
OleGetClipboard
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CreateDataAdviseHolder
CreateOleAdviseHolder
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CreateGenericComposite
RevokeDragDrop
CreateBindCtx
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
SetConvertStg

oleaut32

VariantClear
VariantInit
VariantChangeType
SysFreeString
SysStringByteLen
SysAllocStringLen
SysAllocString
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VarBstrFromDate

oledlg

ord8
ord11
ord5
ord7
ord3
ord1

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromStream
GdiplusShutdown
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdipGetImageDecodersSize
GdipGetImageDecoders
GdiplusStartup

iphlpapi

GetAdaptersInfo
GetAdaptersAddresses

winmm

PlaySoundA

glu32

gluCylinder
gluDeleteQuadric
gluNewQuadric

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmGetContext
ImmReleaseContext

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 465KB - Virtual size: 465KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0447b82673dab51bdadefb5d8829dba8

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

opengl32

glut32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

iphlpapi

winmm

glu32

oleacc

imm32

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 465KB - Virtual size: 465KB

.data Size: 34KB - Virtual size: 70KB

.rsrc Size: 3.8MB - Virtual size: 3.8MB

.reloc Size: 215KB - Virtual size: 214KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 465KB - Virtual size: 465KB

.data
Size: 34KB - Virtual size: 70KB

.rsrc
Size: 3.8MB - Virtual size: 3.8MB

.reloc
Size: 215KB - Virtual size: 214KB