Overview

overview

10

Static

static

10

aa7dd8de02...fd.exe

windows7-x64

1

aa7dd8de02...fd.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d046a42c03cd76fe7ea9552e23a6592e.bin

  • Size

    133KB

  • MD5

    bcfa707b7fec9f30a7b22efe6883a46f

  • SHA1

    f258fbb074b2ab29f9c30d409a7e83a1f1c0b739

  • SHA256

    d066e8c59d79514004ca407973099b0e7ec381b7e8efc8b9e4a461a915b0cde7

  • SHA512

    f3196b45cb5b546b6e84dfe16b1653bf5b4467b8e87d58b5ac699a283fb6daec0c14aae59480990661efb0107c8cafd608a12b564090c44b435cdb95369c9517

  • SSDEEP

    3072:xq6CNIWxStzbMInu/vWC5YLcj5T66hMLruOsSfXyRXow26kilr5V:xkIW8dbRybdubLCSfCRYw2AZ5V

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d046a42c03cd76fe7ea9552e23a6592e.bin
    .zip

    Password: infected

  • aa7dd8de027bf593b6d5ef48755c9592e8c588dc62a75dd3c8369080aa91cafd.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected


    Headers

    Sections