General

  • Target

    2680bb2f5aa059ab3198c85ef441c65563ccc8e7d5dd4cc73436212cb9b8c992

  • Size

    10.6MB

  • MD5

    611e71dec9b5b6fbee23faae3391c1ce

  • SHA1

    c1861ebc294bd61e99a60dfa588891ceab71279f

  • SHA256

    2680bb2f5aa059ab3198c85ef441c65563ccc8e7d5dd4cc73436212cb9b8c992

  • SHA512

    6e09f3d551e210d0582836b03775f71447b6687395323b41ac6f5c06175878f49af3838fc58be190a89aa39c0b0611e1252645cdb0a3941e22dd98c24dcb4964

  • SSDEEP

    196608:OBOtbQ6JVjP93izWhcSIIMSfpV4b653gsAaGEoXMk:OBOtbQ6zFyyMSxVeegsGEIMk

Score
10/10

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2680bb2f5aa059ab3198c85ef441c65563ccc8e7d5dd4cc73436212cb9b8c992
    .exe windows:5 windows x86 arch:x86

    4e5c427e705bedb57286bda63bb5f789


    Headers

    Imports

    Exports

    Sections