Overview

overview

10

Static

static

10

login_LHYH.exe

windows7-x64

10

login_LHYH.exe

windows10-2004-x64

10

out.exe

windows7-x64

3

out.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    login_LHYH.exe

  • Size

    828KB

  • MD5

    faf1155b47ed082c9cf08c18febfd1ea

  • SHA1

    c3d46bcd6105536d2627be4e8e391d9205810d7a

  • SHA256

    07ab108c7f5e5389018af78e6a57d761b3495081f6bdbfbcfb0588f65a749e5b

  • SHA512

    89e5e931604ed3b193492d64ee6ffb429b9e5124050dd3af773d82faf18d0215219eb04da51d1488d14d24a603e95269dc75fc0b990339803be6399c8f4d10a3

  • SSDEEP

    24576:LOytYw5Bq4VspCBPwLXHuB6uRwcwHeupD:LxBqaspCBIL3U6+wcwHeup

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • login_LHYH.exe
    .exe windows:4 windows x86 arch:x86

    Password: Muhannad


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections