Overview

overview

10

Static

static

10

JZ5U绿色...��.url

windows7-x64

1

JZ5U绿色...��.url

windows10-2004-x64

1

使用必�...��.url

windows7-x64

1

使用必�...��.url

windows10-2004-x64

1

粉丝查询.exe

windows7-x64

10

粉丝查询.exe

windows10-2004-x64

10

需要更�...��.url

windows7-x64

1

需要更�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    c01bd541abfd8fe0006d1529eb7284de

  • Size

    461KB

  • MD5

    c01bd541abfd8fe0006d1529eb7284de

  • SHA1

    58674aa8a1ad7279cd7f1bafaca53944ed222899

  • SHA256

    36793b178782bed38aee268a0717f4a1402c9b0d4189f4948b331dab75836eab

  • SHA512

    c9f3c4971d0ff05a64a5120c6b6e7461400551f6751c8b9b90bb3b435ad3a29329575873818897c99d2fc0eee1ddf791269210c8c3277c7f53a56f839b1bb9cd

  • SSDEEP

    12288:mkP1VvZDPUtv+aLt4gSQZeuPrkRYcgP8Sod9EB2tWNUWjNaEH5TE1E:mkPrvxPov+Sv1ZeuPrQAdqsIqUWjNSa

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c01bd541abfd8fe0006d1529eb7284de
    .rar
  • JZ5U绿色下载站 - 副本.url
    .url
  • 使用必读 - 副本.url
  • 粉丝查询.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 需要更多_百度搜索 - 副本.url
    .url