General

  • Target

    759769fe18961d9cf00ce42880ec10551be8bafe7fedddc653dcf17008fd992c.exe

  • Size

    458KB

  • MD5

    5ebf47a6de326bf83e254895e416af4d

  • SHA1

    02559db1fc9cae58c0a7e47898a9bc855c92e4da

  • SHA256

    759769fe18961d9cf00ce42880ec10551be8bafe7fedddc653dcf17008fd992c

  • SHA512

    b1089e3c945695d93313b6964fad4e0e50b49e5036292dcd5e9a276e1c99253617b78e17f125caab6b779a3b9675c3a9ad8f2636f78a3dc3de912015c83faf33

  • SSDEEP

    6144:uvbuWQu/cuaS2l8iE0B55FrJJJekPdi/2gAge+HO:uvqWQub2lrE0B55FpekPdi/2RCO

Score
10/10

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 759769fe18961d9cf00ce42880ec10551be8bafe7fedddc653dcf17008fd992c.exe
    .exe windows:4 windows x86 arch:x86

    391b34fdb03bbbe961a380d74dcff2da


    Headers

    Imports

    Sections