Overview

overview

10

Static

static

10

4038b0f5b6...cd.exe

windows7-x64

1

4038b0f5b6...cd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4038b0f5b6d73f6f1bf361ec56d9accd

  • Size

    215KB

  • MD5

    4038b0f5b6d73f6f1bf361ec56d9accd

  • SHA1

    58f54341266bf8185ebf7798252e01c4449d34d5

  • SHA256

    a6a3d9347478b4ea72b12d426800e20f99b53244cdc82f1054fa4b893d63943e

  • SHA512

    995f9e09ffbefa8f24fe0723769b5cb980b36fbccd6d8234048c3fdb01a7e40956885f2412df7d61303d9152905f5eec88e36e672e3210e8cd675e58b4f87e70

  • SSDEEP

    3072:8ZCTmNKiBQAeQiObjsFBFM822z3dU+GdtiTnf1aVkoqOID:iCTmNKimTQiObQhaf/UWko

Score
10/10
botblacknet

Malware Config

Extracted

Family

blacknet

Version

v3.6.0 Public

Botnet

Bot

C2

https://furyx.de/panel

Mutex

BN[rYrxGuaj-8783562]

Attributes
  • antivm

    false

  • elevate_uac

    true

  • install_name

    WindowsUpdate.exe

  • splitter

    |BN|

  • start_name

    a5b002eacf54590ec8401ff6d3f920ee

  • startup

    false

  • usb_spread

    true

Signatures

  • BlackNET payload 1 IoCs
  • Blacknet family
    blacknet
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4038b0f5b6d73f6f1bf361ec56d9accd
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections