AlphaBlend
DllInitialize
GradientFill
TransparentBlt
vSetDdrawflag
General
-
Target
87fef316e038e1bfebba110eb064ce51724003378de842a480270c26593cd607
-
Size
431KB
-
MD5
f9bbe7c36a4e4e9d2090f59ceb51b89d
-
SHA1
533232797b4734be66b1b0c57184b2ca0a298266
-
SHA256
87fef316e038e1bfebba110eb064ce51724003378de842a480270c26593cd607
-
SHA512
cda69838f91a84533948ed884f2496f591ae6abb863449eefb2128d8708764589e21ae250c825a159296d308e9ae8919472d24ccb7d907faffb62d28acd72358
-
SSDEEP
12288:BajL+BfqlWhVqmhbS975O2ZJIYiR6GhR2gKSQ6rs505:BanutMmc51J1iHhEz96805
Score
10/10
Malware Config
Signatures
-
Blackmoon family
-
Detect Blackmoon payload 1 IoCs
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
87fef316e038e1bfebba110eb064ce51724003378de842a480270c26593cd607
Headers
Exports
Sections
-
out.upx
Headers
Sections