blackguard | 8ef427c944f45672724985a250b1894cffc411dd2d1e90da7ee1e246b5f52b37 | Triage

Sharing

General

Target

8ef427c944f45672724985a250b1894cffc411dd2d1e90da7ee1e246b5f52b37
Size

17.4MB
MD5

639fee13dfd16737a84e6c839ae44911
SHA1

b33dc7f76cd265dd1bd4e877a48118235afa470a
SHA256

8ef427c944f45672724985a250b1894cffc411dd2d1e90da7ee1e246b5f52b37
SHA512

e1c1395ccd2b81f20f6508eb10a5ab80c38df7ff666f0246a02f94762e4befb2a8fcb72c24b95eead4cb7f506700226c414819a61ce068a0a58725381ffe2a98
SSDEEP

393216:HnH+my0WyNUHKocdtQsvcsM0wZzRA/Wbo4YkSbOTByWR:HHlyx9Hpcdast85CW87OIU

Score

10^/10

blackguard

Malware Config

Signatures

Blackguard family
blackguard

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ef427c944f45672724985a250b1894cffc411dd2d1e90da7ee1e246b5f52b37

Files

8ef427c944f45672724985a250b1894cffc411dd2d1e90da7ee1e246b5f52b37
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 17.2MB - Virtual size: 17.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 262KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ