blackmoon | b07f9d08e3328f9d44f565f75d77d0a0a1c9ef29a0919160fd869c167d76024e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b07f9d08e3328f9d44f565f75d77d0a0a1c9ef29a0919160fd869c167d76024e
Size

80KB
MD5

f3bf200652a2f4c28527fd7bc32a3ca9
SHA1

a4c86604977547d1eabf1b7d53f3e5d9e1fc7785
SHA256

b07f9d08e3328f9d44f565f75d77d0a0a1c9ef29a0919160fd869c167d76024e
SHA512

301dbdc23388420afa237bf51565aa1b03a977a051332e65454cd44a9f1547cf777fa7157112b941a68f8dc554d7bc3351137fbc35f2660b5ade95e88b5cc349
SSDEEP

768:tdoF/PjJaIm//39QqUHBNadr/a2edb9HmZELLsdbIWRWeFWxZ:qDm/P9xUH6drS2edb9G4iSxZ

Score

10^/10

blackmoon

Malware Config

Signatures

Blackmoon family
blackmoon

Detect Blackmoon payload 1 IoCs

resource	yara_rule
sample	family_blackmoon

Files

b07f9d08e3328f9d44f565f75d77d0a0a1c9ef29a0919160fd869c167d76024e
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

run

Sections

S�n0
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

S�n1
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

S�n2
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE