Overview

overview

10

Static

static

10

f6df5e2162...9d.exe

windows7-x64

10

f6df5e2162...9d.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f6df5e2162fb9bdbbfd319a875f40c7fd9500d601e533a05c5fa8f5cd02c319d

  • Size

    447KB

  • MD5

    c32446ad2f9a3d06ba6425325d005959

  • SHA1

    19f41cd40534c1780ba38b87c494bbe9410453cd

  • SHA256

    f6df5e2162fb9bdbbfd319a875f40c7fd9500d601e533a05c5fa8f5cd02c319d

  • SHA512

    88ba60cb3c861c38033c03d16579af972ed9c460d54ab70404f809b37e167fdbcff4baddc55f690dfb86249d02babb0a1ef802b26f52447183aa0cd00e7e1a92

  • SSDEEP

    6144:sZrK+r+l0eNPBJrOxQD90saoTXWIg7mljhubq:sZ++qlRBBOxQDU2XWIg6Biq

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f6df5e2162fb9bdbbfd319a875f40c7fd9500d601e533a05c5fa8f5cd02c319d
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections