Overview

overview

10

Static

static

10

b4496c7be8...68.exe

windows7-x64

10

b4496c7be8...68.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b4496c7be8a9258bf377204b491af1155054fff609ad9fc90966f39d9d7fd468

  • Size

    15.0MB

  • MD5

    38c64fa7d7d7478732b04c42b71afa3a

  • SHA1

    8534bed0e1694a090c7ff9b8f010bcff02bccd3e

  • SHA256

    b4496c7be8a9258bf377204b491af1155054fff609ad9fc90966f39d9d7fd468

  • SHA512

    7079d628c25edb62886eab75a8fe5fec096a584bbdabf68ffba810ea0b9913a9c2e6f2366acc9ccd8859a42cb4768febdc422d23043d4252f4b97d2475aadefb

  • SSDEEP

    196608:iQwfQzHzARHblaR6cnawftA3YTcd1Oc5h2dxDbElK:AQTzuoRbBfQYT042YdBkK

Score
10/10
upxblackmoongh0strat

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b4496c7be8a9258bf377204b491af1155054fff609ad9fc90966f39d9d7fd468
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections