Overview

overview

10

Static

static

10

d1ec7603fd...29.dll

windows7-x64

10

d1ec7603fd...29.dll

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    d1ec7603fd6bb90f0ac79eda2065f5acbaeb5d7510db6a1623d72addaf1c7c29

  • Size

    1.0MB

  • MD5

    eade8b00e0e1269ec5bd0dc082494717

  • SHA1

    5ed07176c26242f3a921cc4bb41dbc983404007f

  • SHA256

    d1ec7603fd6bb90f0ac79eda2065f5acbaeb5d7510db6a1623d72addaf1c7c29

  • SHA512

    df1276c4e970ef0f3d486fc498f778b2504fc5267cc3e3eb29f2c49cb976e4ef024835cdc78649404a53ac03119c7cda456aa78a4cbcf165e8a56e631f3e2603

  • SSDEEP

    24576:yangHxEyebm56+HU+VKsdygNR+g8crji/n4XpSmOFO:y6YxEyeS5BU+V9drB8YjPOU

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d1ec7603fd6bb90f0ac79eda2065f5acbaeb5d7510db6a1623d72addaf1c7c29
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections