Overview

overview

10

Static

static

10

db848103c6...bN.exe

windows7-x64

10

db848103c6...bN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    db848103c6ccbf34ced6d2c491dd1db82ff10075fe8528bb1dda56c0f22e400bN

  • Size

    7.4MB

  • MD5

    cd62d7acb1c4ed7b8231d116f4668170

  • SHA1

    2bc95f927e978c7aca6518d14c00eebb082b0689

  • SHA256

    db848103c6ccbf34ced6d2c491dd1db82ff10075fe8528bb1dda56c0f22e400b

  • SHA512

    1318e793f92dfbe4bb81af679376af674956956384c600bd019291d16dc5be11fc0883b60b4525e9635ac8d5cd461abe6884f8b9ae934ab942d0ea2d626f5440

  • SSDEEP

    98304:T/WXTBJYaVmknGzZr+H3O5SEPFtmOb9G1u5v/nZVnivsAl0kroSCa:KXTYimknGzwH3OgEPH39JX/nivPli

Score
10/10
blackmoonmimikatz

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Mimikatz family
    mimikatz
  • mimikatz is an open source tool to dump credentials on Windows 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • db848103c6ccbf34ced6d2c491dd1db82ff10075fe8528bb1dda56c0f22e400bN
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections