blackmoon | bb17a304ee56a1c5e34a245a1b603d3ffe06d58ff1cc0dea9b6eb6d0f7a1f1b6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb17a304ee56a1c5e34a245a1b603d3ffe06d58ff1cc0dea9b6eb6d0f7a1f1b6
Size

236KB
MD5

bf55a752aa2faf84ab7177a9cc75d7d4
SHA1

daf00cfe928ab18def5df84838c272f4f1022397
SHA256

bb17a304ee56a1c5e34a245a1b603d3ffe06d58ff1cc0dea9b6eb6d0f7a1f1b6
SHA512

1cca8012cc2183f6dd0332b1ed45b08d601fc48c9c431888045e755ffc8b4098f41fe54769368e9ecf7c6301ddb4d378f9aaa64adbca68226a578ee0cbdc64cb
SSDEEP

1536:/GIMhKuDSjgdlmOid9S8j2F1AUq7dU1lt1zSYKk0E7d/FFE/tjwoHY0XI:eIAidkjFWUq7dU1lSmZ/FWKo40XI

Score

10^/10

blackmoon

Malware Config

Signatures

Blackmoon family
blackmoon

Detect Blackmoon payload 1 IoCs

resource	yara_rule
sample	family_blackmoon

Files

bb17a304ee56a1c5e34a245a1b603d3ffe06d58ff1cc0dea9b6eb6d0f7a1f1b6
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

MEW
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

??��
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE