Overview

overview

3

Static

static

3

blackcat.7z

windows7-x64

3

blackcat.7z

windows10-2004-x64

3

DecryptMyFiles.exe

windows7-x64

1

DecryptMyFiles.exe

windows10-2004-x64

1

NOTE.png

windows7-x64

3

NOTE.png

windows10-2004-x64

3

victim-fil....encry

windows7-x64

3

victim-fil....encry

windows10-2004-x64

3

victim-fil....encry

windows7-x64

3

victim-fil....encry

windows10-2004-x64

3

victim-fil....encry

windows7-x64

3

victim-fil....encry

windows10-2004-x64

3

victim-fil....encry

windows7-x64

3

victim-fil....encry

windows10-2004-x64

3

victim-fil....encry

windows7-x64

3

victim-fil....encry

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    blackcat.7z

  • Size

    2.7MB

  • MD5

    69530d4bb31c2b22c2ae982d56fe9cdb

  • SHA1

    9900498d3ea68c1387d0fd88554c38f33435a6ad

  • SHA256

    64356f5e5fa3119eb5ea040d2f49b567b5d0458b4caf9627e06c3761439a1746

  • SHA512

    09bd2d240049999b7ebc7cad2481cfe7b6edcd542a3e97418789105771bb528a0a7c1b50e0c6b1c2af74877b9115e4d63bd27085aec647d6512b3ab9fcc96940

  • SSDEEP

    49152:ZdLtYg7zhY81ZnbaEYDbuAw8DfJEz7Eb1Z03fndrQ49ZCb7bHSLRKuUlI6X0UO:7tYgDYHhw8rJEzqyv+vb7L8d

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • blackcat.7z
    .7z

    Password: infected

  • DecryptMyFiles.exe
    .exe windows:6 windows x64

    f0ea7b7844bbc5bfa9bb32efdcea957c


    Headers

    Imports

    Sections

  • NOTE.png
    .png
  • victim-files/Bliss_Windows_XP.png.encry
  • victim-files/Huntress-Labs-Logo-and-Text-Black.png.encry
  • victim-files/flag.txt.encry
  • victim-files/my-favorite-rock.jpg.encry
  • victim-files/the-entire-text-of-hamlet.txt.encry