AlphaBlend
DllInitialize
GradientFill
TransparentBlt
vSetDdrawflag
General
-
Target
cda9d05b85c2cc813ff464748319373060b4dcba6f671db98dbc1de56ca13cf6
-
Size
392KB
-
MD5
11e3532f2c2bf3d654877d07263a560a
-
SHA1
e41153a81dd661e3c0b0e03bfd65b01c079f7d9d
-
SHA256
cda9d05b85c2cc813ff464748319373060b4dcba6f671db98dbc1de56ca13cf6
-
SHA512
24f043712d754660f05b123065a30798fa26f9e60fe80b550a3685a34e0032bb6f3b0275923fe547994d4651c0aa67061517a60e0219dcb222471f81c35c6581
-
SSDEEP
6144:+fxf2hROOYmRDLRR5rhZFQGrsUwF7vlPoSPeCUHBYhXoS:+fxf2hROSRDLR5nWFpPoSNUh2XoS
Score
10/10
Malware Config
Signatures
-
Blackmoon family
-
Detect Blackmoon payload 1 IoCs
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
cda9d05b85c2cc813ff464748319373060b4dcba6f671db98dbc1de56ca13cf6
Headers
Exports
Sections