General

  • Target

    e2409b19955e5f861e776af6fd365a0f7019311ce4cd7e339a5914a6043d068d.exe

  • Size

    153KB

  • MD5

    faadf89935bddf67507ac4fd5b37d631

  • SHA1

    d2e839225ed52255e7cac21971cfdfcef9b671ab

  • SHA256

    e2409b19955e5f861e776af6fd365a0f7019311ce4cd7e339a5914a6043d068d

  • SHA512

    7aae88abcd0fda5b28b4095aa17e5d337cfed567fc186d306b16be25b9f8a4800fea314aa2446bd824aa703ac02bba712e5f476ed40fbf536adff2dc30b8a26d

  • SSDEEP

    1536:rj+zUtBIBU+2Da4lH4Iiue58o/ZDv4GMfcHZIlVKAn5ZAcXeOqbZ6NjkEVnouy89:PqSe5OmiEoAcCbZ6FNout9

Score
10/10

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e2409b19955e5f861e776af6fd365a0f7019311ce4cd7e339a5914a6043d068d.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections