Overview

overview

10

Static

static

10

d102ca0a5b...18.exe

windows7-x64

10

d102ca0a5b...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d102ca0a5be8dc1484a708c9728ece28_JaffaCakes118

  • Size

    2.4MB

  • MD5

    d102ca0a5be8dc1484a708c9728ece28

  • SHA1

    ca0a1434cdf6e7f65c8e3146526f598f120f5260

  • SHA256

    fd9e0a02a8f78fc632627af72c5d008f84a2cede74f59e671edbbcb8912ffaa4

  • SHA512

    8f1ead7d96120a2c5683ae044d4eda49b5d84fdc88981b2ffee56c4b8c92a4fe3df9225c0ae0f73d4d2f7fa0d9e09ba148e8b97795c4bb4749f695749458e269

  • SSDEEP

    49152:mfgUdpJX04dJ4cJkrlzdT2+GVv+LnmrfV6CDwof+N7AWg1ubwb3zicmJCTequkqp:mfgwpJXZdLmpdT2pVWLncQC0ofccWg1Q

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d102ca0a5be8dc1484a708c9728ece28_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections