| File Name | lunar-tool.exe |
| File Type |
PE32+ executable (console) x86-64, for MS Windows
|
| Scanner Version | 1.0.228.174 |
| Database Version | 2025-10-21 16:00:14 UTC |
No threats detected by our scanner
| Hash Type | Value | Action |
|---|---|---|
| MD5 |
cff0de2916130f5dc550cdbdb94bb094
|
|
| SHA1 |
610b0fdd80b2fc299ca89f2d2dc958e935e51a07
|
|
| SHA256 |
bf9007129362436b6c8a8c29e506f357e12e0abdb5fd6507a48c9400c5b42312
|
|
| SHA512 |
103f1028fe4ecef5061487ae595ad872fbd236e014e691316ab3ad51b0eb808c2ce0a043e48be4cdd61f9b839464979b7fb92715a9c14f2d491b154ce8093d47
|
|
| ImpHash |
d42595b695fc008ef2c56aabd8efd68e
|
| Image Base | 0x140000000 |
| Entry Point | 0x140075d20 |
| Compilation Time | 1970-01-01 00:00:00 |
| Checksum | 0x00000000 (Actual: 0x0035fe7a) |
| OS Version | 6.1 |
| PEiD Signatures |
PE32+ executable (console) x86-64, for MS Windows
|
| Digital Signature | No valid SignedData structure was found. |
| Imports |
1 libraries
kernel32 |
| Exports | 0 functions |
| Resources | 0 Resources |
| Sections | 16 Sections |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | Characteristics | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
1,071,377 bytes | 1,071,616 bytes | 6.22 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
C683C1F3D749D18FAD15653DC621B23D |
.rdata |
0x00107000 |
1,187,072 bytes | 1,187,328 bytes | 5.53 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
2C9A42716B57B4A59CECE5013C5B2E25 |
.data |
0x00229000 |
434,088 bytes | 133,120 bytes | 4.30 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
DD307077AEFA86B94E68EB600F0310EA |
.pdata |
0x00293000 |
26,472 bytes | 26,624 bytes | 5.29 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
3632DCF1415E8EB6B269450F08F4B1F5 |
.xdata |
0x0029a000 |
180 bytes | 512 bytes | 1.76 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
136F934A92B4F7BD598FB5B9DA500E1A |
/4 |
0x0029b000 |
340 bytes | 512 bytes | 5.67 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
BCDDEF00414A946919302442928E542E |
/19 |
0x0029c000 |
226,225 bytes | 226,304 bytes | 7.99 (Packed/Encrypted) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
1EF56450B9DD9F26D65A580511AFE58E |
/32 |
0x002d4000 |
43,340 bytes | 43,520 bytes | 7.93 (Packed/Encrypted) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
41E03F73346B44D537F6BACCE31472C3 |
/46 |
0x002df000 |
48 bytes | 512 bytes | 0.86 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
40CCA7C46FC713B4F088E5D440CA7931 |
/65 |
0x002e0000 |
365,160 bytes | 365,568 bytes | 8.00 (Packed/Encrypted) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
8B4C2EFD2F36DD04F65FA741A3FF7606 |
/78 |
0x0033a000 |
185,529 bytes | 185,856 bytes | 8.00 (Packed/Encrypted) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
EF2C2A75027D76580B82D140A7F34964 |
/95 |
0x00368000 |
95,341 bytes | 95,744 bytes | 7.99 (Packed/Encrypted) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
4E1BC241E66B8B6FD4AEB7D0ADF0E985 |
/112 |
0x00380000 |
5,396 bytes | 5,632 bytes | 7.68 (Packed/Encrypted) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_1BYTES
|
62DC3DB75958B558C15251E51C65727C |
.idata |
0x00382000 |
1,342 bytes | 1,536 bytes | 4.01 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
1E4315829952BB76DAD0508EAAF0B793 |
.reloc |
0x00383000 |
22,032 bytes | 22,528 bytes | 5.41 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
62483E80D3B16A8B184EC51FBE679E1D |
.symtab |
0x00389000 |
162,881 bytes | 163,328 bytes | 5.13 (Normal) |
IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
05754F58213AC9136FE7109F3379814C |
6 section(s) with high entropy (≥7.5) detected - possible packing/encryption
This file is not digitally signed.
⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources
No valid SignedData structure was found.
Recommendation: Verify the file source and ensure it comes from a trusted publisher.
Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:
Download Anti-MalwareThis file appears clean, but regular security maintenance is important
Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware
Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!
