Overview

overview

10

Static

static

10

8096ab2207...c6.exe

windows7-x64

1

8096ab2207...c6.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    d0a395e1540e4d157c223117442ee476.bin

  • Size

    134KB

  • MD5

    76b1ab4a8ab007c06bd499d11e83efe8

  • SHA1

    a5e77f4f0e4f6fdd97b1d9fd63fef166fef395e4

  • SHA256

    6f040a264511a6eb4a59b587f601d564f1048650a06aac0f1578a289b90af52a

  • SHA512

    26f5ad59a5a32199e1281a3b999d1da4a7ab4d478c5f798dc0571f8b63f15102df8b603f1a6710da7c8cf040eed1699dfaa5ed9f3043a41e917d546a0b0ec3a8

  • SSDEEP

    3072:gFWjCD60u8Q6RZu+C3fM1lir/OdgW3Ejkd4DNvxz6xM9HTnCcJ9:gYCU63u+C3f/EgW3EAdWR6on/

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d0a395e1540e4d157c223117442ee476.bin
    .zip

    Password: infected

  • 8096ab2207664b4699e48a7c1933d09456980fca88993bcde3356b0930dff9c6.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected


    Headers

    Sections