Overview

overview

10

Static

static

10

e2409b1995...8d.exe

windows7-x64

10

e2409b1995...8d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    faadf89935bddf67507ac4fd5b37d631.bin

  • Size

    56KB

  • MD5

    58e0986e82328a36c00d6edd2213c3ad

  • SHA1

    3e68a6b16a8386a73a7cac6e379cd2f774854d2f

  • SHA256

    6b303bd494c7b970278681404d1c2df2ef28a1d2b4f0a98134d8b2c38aff57fa

  • SHA512

    b0cdbd1688af27203b53d3722ebd945516f2cd7a23f7069a2e5e7c564474ee9e734abdf0ffa311bb8c328ee457372f634fe94d0a6fc64bace3ecd8d6ee3cce0a

  • SSDEEP

    1536:ms9Gsgy+tau3f9wio7eFil8koqyJuTpA7W1Z0l4Y/g:t0ByQV47eFY8koquBWQlJg

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • faadf89935bddf67507ac4fd5b37d631.bin
    .zip

    Password: infected

  • e2409b19955e5f861e776af6fd365a0f7019311ce4cd7e339a5914a6043d068d.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected


    Headers

    Sections