Static task
static1
General
-
Target
MooClient.dll
-
Size
391KB
-
MD5
1baf5399fddfa794e2303d4f281e93ec
-
SHA1
54163561fead9d9473eec77fb093fa73c129545f
-
SHA256
7d2cfc8b97c86d9927ba0218660da7a8bbe565996f79faa24b88409d3aac1dd9
-
SHA512
de2d5941225cd8e99a4b15e1e198f806bc141295a54c8d83b4446e0a524217eb594700bc59f895fc239365eacd1c794cfe8611acc529a72906a984f37af17c39
-
SSDEEP
6144:Ymmy/lgmnCfrm2Sv3GoXGveO0g5crsZyf2UMJp9put7J6oSVxCz2gVUUDb0lZaR:ljl716r4A
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource MooClient.dll
Files
-
MooClient.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 389KB - Virtual size: 389KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 884B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ