Resubmissions

24/12/2024, 19:13

241224-xw3kaavlen 7

24/12/2024, 19:08

241224-xtltravlam 7

24/12/2024, 19:06

241224-xr869strgt 7

General

  • Target

    Archive.zip

  • Size

    2.3MB

  • MD5

    03a1ddc324751540b1e293051c630c0c

  • SHA1

    8659e8049aa13d81189a0ffb13e36dcdf4d31f71

  • SHA256

    ebdce938512e6338a6e0101e006e9a22237bced741086cc932eebecc03e9a820

  • SHA512

    25b2ed837d4f824701fb9d24ef472c7f6963acbeef423a396568f947f671c6458cffaef09004dfb16f88acfb1cb9fef50f627e40aa6948a951a584563d30dbab

  • SSDEEP

    49152:emRvJShtDbHj9XAGSwFRuYuTIkqXfd+/9A2aDxbb0k71+FIg4/vj8d5E+PpfLUZ1:RS/DbD+o8TIkqXf0FFM/03FIgcCfxC

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Archive.zip
    .zip
  • BlackRock.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • Folder.DotSettings.user
  • Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Newtonsoft.Json.xml
    .xml
  • ScintillaNET.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • ScintillaNET.xml
    .xml
  • __MACOSX/._BlackRock.exe
  • __MACOSX/._Folder.DotSettings.user
  • __MACOSX/._Newtonsoft.Json.dll
  • __MACOSX/._Newtonsoft.Json.xml
  • __MACOSX/._ScintillaNET.dll
  • __MACOSX/._ScintillaNET.xml