blackguard | 7f2542ed2768a8bd5f6054eaf3c5f75cb4f77c0c8e887e58b613cb43d9dd9c13 | Triage

Submit
Reports

Overview

overview

Static

static

7f2542ed27...13.exe

windows7_x64

7f2542ed27...13.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

7f2542ed2768a8bd5f6054eaf3c5f75cb4f77c0c8e887e58b613cb43d9dd9c13.exe

Resource

win7-20220331-en

blackguard stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7f2542ed2768a8bd5f6054eaf3c5f75cb4f77c0c8e887e58b613cb43d9dd9c13.exe

Resource

win10v2004-20220331-en

blackguard stealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

7f2542ed2768a8bd5f6054eaf3c5f75cb4f77c0c8e887e58b613cb43d9dd9c13
Size

1.6MB
MD5

29978475551e7ca94eac65ad06afb6cc
SHA1

581eb855be9da7d25a000737cedc0b9f7aacee03
SHA256

7f2542ed2768a8bd5f6054eaf3c5f75cb4f77c0c8e887e58b613cb43d9dd9c13
SHA512

d289f735ed744f8612a9309b712fbebbc524c2e0759cc4dc7d83a5b107ad8c4c985be761c30ffafa4f529d21b6bc96d514881692b0fdd3142134621fac97acf3
SSDEEP

24576:/NXaV9x4IUgs36BUI2So5+jnzFEmM+JJ1XO32Zj3YsDClQhvo0:/0T+Sk6BU7HIFE7+JJ1M2J3Y2phvj

Score

10^/10

blackguard

Malware Config

Extracted

Family

blackguard

C2

https://greenblguard.shop/

Signatures

Blackguard family
blackguard

Files

7f2542ed2768a8bd5f6054eaf3c5f75cb4f77c0c8e887e58b613cb43d9dd9c13
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy