General

  • Target

    d89c87cfddf2240b38d35174a36bb92afdffd688c4bd7477063f82014f22e5ce

  • Size

    13.6MB

  • MD5

    4c2e6aec3612badf741c4d94cf582ead

  • SHA1

    f0c7c2138cc47735c6ec6b0be8baf2cb98725e7d

  • SHA256

    d89c87cfddf2240b38d35174a36bb92afdffd688c4bd7477063f82014f22e5ce

  • SHA512

    17600cea7474b0f1060833f71d516e1c021416ec1ee61681899c3fa656e52003f1d80e288b8ed97819eec63d99b07c6a6fe42801c71f0be518ee806043821b29

  • SSDEEP

    196608:WyC9TcWpuT1HhmmPb/CMyd+USiIs9o7/3O+BSX/0KrChNPT4j9XKir/AGdl5Tf+6:WyC9IWk9p6M7DiIWD/iiXKiVfMsHhMy

Score
10/10

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d89c87cfddf2240b38d35174a36bb92afdffd688c4bd7477063f82014f22e5ce
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections