blackguard | 4d66b5a09f4e500e7df0794552829c925a5728ad0acd9e68ec020e138abe80ac | Triage

Submit
Reports

Overview

overview

Static

static

4d66b5a09f...ac.exe

windows7_x64

4d66b5a09f...ac.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4d66b5a09f4e500e7df0794552829c925a5728ad0acd9e68ec020e138abe80ac.exe

Resource

win7-20220331-en

blackguard stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4d66b5a09f4e500e7df0794552829c925a5728ad0acd9e68ec020e138abe80ac.exe

Resource

win10v2004-20220331-en

blackguard stealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

4d66b5a09f4e500e7df0794552829c925a5728ad0acd9e68ec020e138abe80ac
Size

2.2MB
MD5

ac7d6f234f3bcb9c2c74f016b0302c39
SHA1

e2ffff0ef2f0c6b5f6f60cc651cbc4d034b7a36b
SHA256

4d66b5a09f4e500e7df0794552829c925a5728ad0acd9e68ec020e138abe80ac
SHA512

884b171c192ebe22a6e56dd8cad824485d1c3b3f8105e42b24159116770031f1a6bb32602ddd993b1b6a47d7c5add235325daad6ad17bd190de020e51d55e176
SSDEEP

49152:HGNjiSZTKAzkltDhTCcVX8saTtWycOLH+tkWJ0v2J3Y2phvjX5876zLm:mNuSZTKA0t9FFPE7HgkWJ0v2Jo2/uM

Score

10^/10

blackguard

Malware Config

Extracted

Family

blackguard

C2

https://greenblguard.shop/

Signatures

Blackguard family
blackguard

Files

4d66b5a09f4e500e7df0794552829c925a5728ad0acd9e68ec020e138abe80ac
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy