blackmoon | d00709d38ec2c89444211b0970b70e9d2c3eadb9b7c85f93a80749e43e57a230 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d00709d38ec2c89444211b0970b70e9d2c3eadb9b7c85f93a80749e43e57a230
Size

80KB
MD5

38fba817080b030a3b8a2e74187a3c8b
SHA1

8710be8eb37c0677bb6e3fef938beac75d0a3777
SHA256

d00709d38ec2c89444211b0970b70e9d2c3eadb9b7c85f93a80749e43e57a230
SHA512

41e0b93909ea428d9b86aec3dfe000f306b378abef14b2cacbcff7c2540991c613c0b50c1c0b5ad333b1f9b6627e79eee0f0aca79726ea57aef2541bae32768a
SSDEEP

768:7MFz18Cn+Im/aVtQeUMQ9adr9a2Vru5dCnrcqbGfzHWxZ:C/m/2tFUMRdrw2VydCrhSfyxZ

Score

10^/10

blackmoon

Malware Config

Signatures

Blackmoon family
blackmoon

Detect Blackmoon payload 1 IoCs

resource	yara_rule
sample	family_blackmoon

Files

d00709d38ec2c89444211b0970b70e9d2c3eadb9b7c85f93a80749e43e57a230
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

run

Sections

|6�40
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

|6�41
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

|6�42
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE