ce824d6210e678b8df7985f6b81e09e18835b3b316f7df2e6e08fb17a48dd833

Submit
Reports

Overview

overview

Static

static

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...up.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...er.exe

windows10-2004-x64

moonspoofe...up.exe

windows10-2004-x64

Analysis

max time kernel
29s
max time network
43s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
18-12-2022 13:36

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

moonspoofer-main/moonspoofer/bin/Debug/MoonSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral2

Sample

moonspoofer-main/moonspoofer/bin/Debug/app.publish/MoonSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

30 seconds

Behavioral task

behavioral3

Sample

moonspoofer-main/moonspoofer/bin/Release/MoonSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral4

Sample

moonspoofer-main/moonspoofer/bin/Release/app.publish/Application Files/MoonSpoofer_1_0_0_26/MoonSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral5

Sample

moonspoofer-main/moonspoofer/bin/Release/app.publish/MoonSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

30 seconds

Behavioral task

behavioral6

Sample

moonspoofer-main/moonspoofer/bin/Release/app.publish/setup.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

30 seconds

Behavioral task

behavioral7

Sample

moonspoofer-main/moonspoofer/obj/Debug/MoonSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

30 seconds

Behavioral task

behavioral8

Sample

moonspoofer-main/moonspoofer/obj/Release/MoonSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

30 seconds

Behavioral task

behavioral9

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/Loader_1_0_0_0/Loader.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral10

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/Loader_1_0_0_1/Loader.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral11

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/Loader_1_0_0_2/Loader.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral12

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/MoonSpoofer_1_0_0_21/Nowy folder/MoonSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral13

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/MoonSpoofer_1_0_0_22/MoonSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral14

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/MoonSpoofer_1_0_0_23/MoonSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

30 seconds

Behavioral task

behavioral15

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/MoonSpoofer_1_0_0_24/MoonSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral16

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/MoonSpoofer_1_0_0_25/MoonSpoofer.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral17

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/MoonSpoofer_1_0_0_26/MoonSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral18

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_11/UranSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral19

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_12/UranSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral20

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_12/halo/UranSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral21

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_15/UranSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral22

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_16/UranSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral23

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_16/UranSpoofer_Secure/UranSpoofer.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

30 seconds

Behavioral task

behavioral24

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_17/Confused/UranSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

30 seconds

Behavioral task

behavioral25

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_18/UranSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral26

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_19/UranSpoofer.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

30 seconds

Behavioral task

behavioral27

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_19/UranSpoofer_Secure/Protected/UranSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral28

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_19/UranSpoofer_Secure/UranSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

30 seconds

Behavioral task

behavioral29

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_6/UranSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral30

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_7/UranSpoofer.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral31

Sample

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_8/UranSpoofer.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

30 seconds

Behavioral task

behavioral32

Sample

moonspoofer-main/moonspoofer/publikuj/setup.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

30 seconds

Report Analysis Logs

General

Target

moonspoofer-main/moonspoofer/publikuj/Application Files/UranSpoofer_1_0_0_19/UranSpoofer.exe
Size

4.2MB
MD5

2441def00e4b7637181c40e9c1fffe18
SHA1

300756bbaf25df9c2d44748f78ab1b48bcb87f23
SHA256

80aa14aae75ec791da74687fc2ed40d126f7cfab761ee87357d3a23473633000
SHA512

7ad001fdcfc2c391a73455953fbc4a7b78c86bee9e09440e9f806e91f955bce8347127d8a29199c3742da62c0e5d7472c5bbf4cadd14b0f7e97a5fdc02ca86d5
SSDEEP

98304:g+UAgd9nKTUP0sCDqQbgOktRaykSH58EAlSEJePDbHkvsH+D6:g7jd9n3PAFgOM55AebbEvVD6

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1168	2396	WerFault.exe	79

Processes

C:\Users\Admin\AppData\Local\Temp\moonspoofer-main\moonspoofer\publikuj\Application Files\UranSpoofer_1_0_0_19\UranSpoofer.exe
"C:\Users\Admin\AppData\Local\Temp\moonspoofer-main\moonspoofer\publikuj\Application Files\UranSpoofer_1_0_0_19\UranSpoofer.exe"
1⤵
PID:2396
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2396 -s 1064
  2⤵
  - Program crash
  PID:1168

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 2396 -ip 2396
1⤵
PID:2860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2396-132-0x0000000000160000-0x0000000000590000-memory.dmp

Filesize
4.2MB

Download
memory/2396-133-0x00000000053B0000-0x0000000005954000-memory.dmp

Filesize
5.6MB

Download
memory/2396-134-0x0000000004E00000-0x0000000004E92000-memory.dmp

Filesize
584KB

Download
memory/2396-135-0x0000000004D90000-0x0000000004DA2000-memory.dmp

Filesize
72KB

Download
memory/2396-136-0x0000000004FB0000-0x0000000004FBA000-memory.dmp

Filesize
40KB

Download