General

  • Target

    2024-04-10_a2829442ff00cc349b69e305e86a2967_hacktools_xiaoba

  • Size

    4.1MB

  • MD5

    a2829442ff00cc349b69e305e86a2967

  • SHA1

    b868fba0ff379c7f546620106959875c32485512

  • SHA256

    2b3a9fdbc6a900feb580246eb15f2e2f1296a03eee9fdb7f44813eadb2cce82a

  • SHA512

    2fdde299ee705641568b8cbb76fb46e3456c891acb09029ba812805b4adaab065a6d8d69e233fde85dc5b284145d90476c6c2cffa9b256b7973357c4ec7fb0dd

  • SSDEEP

    98304:oNHGz3i+1EIpkIaAAvAF6RKs91PM+FUdyRF+:oNHGn1TpjaKkKs9m+F9F+

Score
10/10

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-10_a2829442ff00cc349b69e305e86a2967_hacktools_xiaoba
    .exe windows:4 windows x86 arch:x86

    1d9d50fd0861209cf0debcbad493c686


    Headers

    Imports

    Sections