Overview

overview

10

Static

static

10

c8b6485ac1...87.exe

windows7-x64

10

c8b6485ac1...87.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c8b6485ac16fe166abc99a14f01d1ff671826e2f0c500990a9ad7a75c4bc6287.exe

  • Size

    3.8MB

  • MD5

    e60cfc2e304799b448985433439dc95c

  • SHA1

    08ccfabaeb6e4a732c78f188c21337188ef4039e

  • SHA256

    c8b6485ac16fe166abc99a14f01d1ff671826e2f0c500990a9ad7a75c4bc6287

  • SHA512

    cc2d5071f71aa04092f5968a68680d3b17f584bb8f9a7d0c58fdcf4797d136b5e267adc01abdcc1bc6db933f5e38a1dda1aa02f8d6aa56670d3cc1a12589c82f

  • SSDEEP

    49152:3sCOfN6X5tLLQTg20ITS/PPs/1kS4eKRL/SRsj0Zuur1T75YqVUrmNF98K:Q6XLq/qPPslzKx/dJg1ErmN3

Score
10/10
upxblackmoonnjrat

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Njrat family
    njrat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c8b6485ac16fe166abc99a14f01d1ff671826e2f0c500990a9ad7a75c4bc6287.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections