General

  • Target

    634249ce49bac5e04a5bab89e07aad52d70344f89a28dc3b71c0360a6c1e66ec

  • Size

    8.0MB

  • MD5

    6a8af7271908fd98428c382f99689b7a

  • SHA1

    021b49ea3e151e53fe689bebdc9d78d0a92f9c83

  • SHA256

    634249ce49bac5e04a5bab89e07aad52d70344f89a28dc3b71c0360a6c1e66ec

  • SHA512

    5b51ab03dd87aa0418c1899a6c3466eb4f68f5e2d10b15f37554f0e31317ba087160e44839649b4805c84b61b1ed52a4c4d279c35c6f6cc0804357c7e574c85b

  • SSDEEP

    196608:6UgWi5QbfXGOPcebUvljJYJTag2HjNPsMr2x0R:6bQb/bPgvlmTypPd4S

Score
10/10

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 634249ce49bac5e04a5bab89e07aad52d70344f89a28dc3b71c0360a6c1e66ec
    .zip
  • 宇宙至尊白蛋[盾].exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • cmd.exe
    .exe windows:4 windows x86 arch:x86

    0959bf8d73877ad8020af36aa95a0dd3


    Headers

    Imports

    Sections

  • ׵[].exe
    .exe windows:4 windows x86 arch:x86

    66bdfc8ae8b7df8a3cb506e875e75df2


    Headers

    Imports

    Sections