Overview

overview

10

Static

static

10

3ea5f486d1...d4.exe

windows7-x64

10

3ea5f486d1...d4.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3ea5f486d171c1bc39df1f54656c0bbc5a06146586ad604c2e961a5d46a468d4.exe

  • Size

    153KB

  • MD5

    063e63d8179e9ba970dd2f383d1d1a82

  • SHA1

    bd030fd0b8e30df7569a0f750c2e1c94d6d7b2bc

  • SHA256

    3ea5f486d171c1bc39df1f54656c0bbc5a06146586ad604c2e961a5d46a468d4

  • SHA512

    0c89014783c09924ce8e32a3c2cec99a9c39edaa9049c03490e0131ad531c423439e3c5e220c3b328ab20cd79724f3f8c1ea72c82c0218798187033ff9375ae6

  • SSDEEP

    1536:rj+zUtBIBU+2Da4lH4Iiue58o/ZDv4GMfcHZIlVKAn5ZAcXeOqbZ6NjkEVnouy87:PqSe5OmiEoAcCbZ6FNout7

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3ea5f486d171c1bc39df1f54656c0bbc5a06146586ad604c2e961a5d46a468d4.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections