General
-
Target
Trojan.Win32.Eqtonex.pz-5fe9f98d8fd4a1580a1c0daec7970ad7595cf12f9dae8ff3185d4c3eefcdf47dN
-
Size
9.7MB
-
MD5
0b197ebd3240cbf2898e64b733d34f30
-
SHA1
491f354c6942c307bfd3c3ddd5b6697f5d83daf5
-
SHA256
5fe9f98d8fd4a1580a1c0daec7970ad7595cf12f9dae8ff3185d4c3eefcdf47d
-
SHA512
0ac3045cd29f8cb2502bad81ba7d18fea6bfeedf4c4cbabf84561d259f813085ab77e6e7ebb6b4ef4b54147542f33a6e2a2dc6520b789b9f865750f53d3652b5
-
SSDEEP
196608:K2c1uwl1CPwDv3uFhi43v13uFnCPws8S/VW08Sr8lQeY3YgOFmknGzwHIPHd9DPK:KnEwl1CPwDv3uFY43v13uFnCPwa/VW0E
Score
10/10
Malware Config
Signatures
-
Blackmoon family
-
Detect Blackmoon payload 1 IoCs
-
Mimikatz family
-
mimikatz is an open source tool to dump credentials on Windows 1 IoCs
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
-
NSIS installer 1 IoCs
Files
-
Trojan.Win32.Eqtonex.pz-5fe9f98d8fd4a1580a1c0daec7970ad7595cf12f9dae8ff3185d4c3eefcdf47dN
Headers
Sections