7d202f15c7fac8991417ec14c890dfc79c4ce6aef8498bb7e551473e65731ba9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

MoonSpoofer.exe

windows10-2004-x64

8

Sharing

General

Target

MoonSpoofer.exe
Size

369KB
Sample

240416-hrq85adf5z
MD5

2d73d569359592ac10ce35d14a6f8526
SHA1

886a6053e7723e1358eb1d22c339375e5a794ce9
SHA256

7d202f15c7fac8991417ec14c890dfc79c4ce6aef8498bb7e551473e65731ba9
SHA512

d5543e97545e7464cce975b14e41f60d56e8a2e3fce35fbf3d6e1ae1bad36e6a94271cc3e3107fd9797b2e3f587d1d2fdeaa7d1e5a5f663771b1b4b161943aed
SSDEEP

6144:CtuezJ/rvhl0bBGaA5v7xpKpQ9/3Ew/uo27pUogiDsZAEw/uo2uEw/uo2uEw/uor:Wl5B0K527lsZK52hK52hK52T6

Score

8^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

MoonSpoofer.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

15 signatures

300 seconds

Malware Config

Targets

- Target
  
  MoonSpoofer.exe
- Size
  
  369KB
- MD5
  
  2d73d569359592ac10ce35d14a6f8526
- SHA1
  
  886a6053e7723e1358eb1d22c339375e5a794ce9
- SHA256
  
  7d202f15c7fac8991417ec14c890dfc79c4ce6aef8498bb7e551473e65731ba9
- SHA512
  
  d5543e97545e7464cce975b14e41f60d56e8a2e3fce35fbf3d6e1ae1bad36e6a94271cc3e3107fd9797b2e3f587d1d2fdeaa7d1e5a5f663771b1b4b161943aed
- SSDEEP
  
  6144:CtuezJ/rvhl0bBGaA5v7xpKpQ9/3Ew/uo27pUogiDsZAEw/uo2uEw/uo2uEw/uor:Wl5B0K527lsZK52hK52hK52T6
Score

8^/10
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy