Overview

overview

10

Static

static

10

2024061516...ba.exe

windows7-x64

10

2024061516...ba.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024061516a076c0b0cc9676f40c6066ddad9592xiaoba.exe

  • Size

    35.0MB

  • MD5

    16a076c0b0cc9676f40c6066ddad9592

  • SHA1

    3220f8e7fddcbb20b8ce10ba9c2cc20ff0a35178

  • SHA256

    3de60d9a62817e27f3f66f3cd7c46be048d85309cd25c0e4d8ff2639ac982910

  • SHA512

    c8f58bf4798e145bd3bc207724418342b1ac93af0d6f32df4001516c6eb716650ffed8e21aa81ee6fdec40491eaaf7cd6e1946fbc538a6eb1ccd94a67697e007

  • SSDEEP

    786432:PHhIKPq1y1RPzxUQ21NAwanKbsKQTFaNHPmgabUZfwK:PHSKOGRPzmNweMbbU1J

Score
10/10
vmprotectblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024061516a076c0b0cc9676f40c6066ddad9592xiaoba.exe
    .exe windows:5 windows x86 arch:x86

    a0659bfef859e9379767054e4032a93f


    Headers

    Imports

    Sections