C:\Users\DeathZ\source\repos\StarDLL\x64\Release\MoonDLL.pdb
Static task
static1
1 signatures
General
-
Target
24UMJ5a19yFK7 (MOON).dll
-
Size
824KB
-
MD5
a0bed29e59e3d3668ba942647ad740b9
-
SHA1
ed0a75d23fb2a0cda5e4cc1189c0099fcc6984f1
-
SHA256
ccf2d5a95d962230fde62b7f5b57f7ed9d87110b4265c47588733e09780b6f95
-
SHA512
2e20a8b127d5b56ec038bd6718729086625676a8ec6838f12a50e80117cc3538b7a955dc092bb50bd493172a9d77309e441131c129aebbe4fdb7929c07e1f145
-
SSDEEP
6144:kGfVY73C5s5wKvUXz+Aaa5JGpfdyd/roViImyCjUkW62dR83k8Uz:xfVY73lwK3nnydqGkz
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 24UMJ5a19yFK7 (MOON).dll
Files
-
24UMJ5a19yFK7 (MOON).dll.dll windows:6 windows x64 arch:x64
f58c118d1cdef6e052ee3b910df801f1
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
kernel32
CloseHandle
Process32NextW
GetStdHandle
FillConsoleOutputCharacterW
FillConsoleOutputAttribute
SetConsoleCursorPosition
SetConsoleTextAttribute
GetConsoleCursorInfo
SetConsoleCursorInfo
TerminateThread
Sleep
CreateThread
AllocConsole
SetConsoleTitleW
TerminateProcess
OpenProcess
QueryFullProcessImageNameA
GetCurrentProcess
CheckRemoteDebuggerPresent
Process32FirstW
CreateToolhelp32Snapshot
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetProcAddress
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetConsoleWindow
GetCurrentProcessId
GetTempPathW
MultiByteToWideChar
IsDebuggerPresent
GetConsoleScreenBufferInfo
user32
ShowWindow
SetActiveWindow
SetFocus
EnumWindows
MoveWindow
FindWindowA
GetCursorInfo
GetForegroundWindow
GetClassNameW
PostMessageW
WindowFromPoint
GetCursorPos
GetAsyncKeyState
GetKeyState
ShowScrollBar
GetWindowThreadProcessId
GetWindowRect
GetWindowLongW
SetForegroundWindow
SetWindowLongW
GetDesktopWindow
advapi32
RegQueryInfoKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyValueA
RegDeleteKeyA
RegEnumValueW
msvcp140
?_Xlength_error@std@@YAXPEBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Xout_of_range@std@@YAXPEBD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?uncaught_exception@std@@YA_NXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Xinvalid_argument@std@@YAXPEBD@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
vcruntime140_1
__CxxFrameHandler4
vcruntime140
memcmp
__std_type_info_destroy_list
memset
_CxxThrowException
__C_specific_handler
__std_type_info_compare
_purecall
__std_exception_destroy
__std_exception_copy
__std_terminate
memmove
memcpy
memchr
api-ms-win-crt-runtime-l1-1-0
_initterm
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_cexit
_crt_atexit
_register_onexit_function
_invalid_parameter_noinfo_noreturn
_execute_onexit_table
_initterm_e
abort
system
_errno
api-ms-win-crt-convert-l1-1-0
strtol
api-ms-win-crt-utility-l1-1-0
rand
api-ms-win-crt-stdio-l1-1-0
__acrt_iob_func
freopen
api-ms-win-crt-heap-l1-1-0
_callnewh
malloc
free
Sections
.text Size: 123KB - Virtual size: 123KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 35KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 248B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 972B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ