Overview

overview

10

Static

static

10

2024-04-16...id.exe

windows7-x64

10

2024-04-16...id.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-16_6a03eda9c1b9b6c0267f802e9e2689ea_cobalt-strike_icedid

  • Size

    384KB

  • MD5

    6a03eda9c1b9b6c0267f802e9e2689ea

  • SHA1

    46cce2049d5ad5d551470a6ba43c2a6a0affd163

  • SHA256

    fcfea936dd6281c60f41bd5120c509f5f451870a2e833d5c2a8b30a21eb4664f

  • SHA512

    5e947db1b03b77dc606ab4178ca1bdc822749f7ef588fe473481b68a8be9486905bcd191db6a5b085f21f63bbeb43e383e941245f271d764383acea733755053

  • SSDEEP

    6144:BHS77lSa7hu1H7ukkcnDtSR6Cgchd34POdOOUqxfzT4Rl:BHwAehMkutSRVhd34PM7T4X

Score
10/10
blackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-16_6a03eda9c1b9b6c0267f802e9e2689ea_cobalt-strike_icedid
    .exe windows:4 windows x86 arch:x86

    a8dadfdc61dd4ff4c79e9c9e4fbcef28


    Headers

    Imports

    Sections