General
-
Target
1eea3cbd729d4493c0c0a84efe6840abf1760efe221dc971d32ca5017b5c19c2.bin.sample
-
Size
81KB
-
MD5
5a8491587ab0f96ba141ae59365bc911
-
SHA1
1ab2fac4f2dc92893a9f89fc6621f66bd47cb783
-
SHA256
1eea3cbd729d4493c0c0a84efe6840abf1760efe221dc971d32ca5017b5c19c2
-
SHA512
97e760f60e4db99983d05db69776058cf2f2c5ab98adea76000001a94a24f3b23feee4464baa23cf49dfa017e331c3b8b19c9da5b696f961f63cd65fc864c5c7
Score
10/10
Malware Config
Extracted
Family
blackmatter
Version
2.0
Botnet
04bdf8557fa74ea0e3adbd2975efd274
C2
mepocs
memtas
veeam
svc$
backup
sql
vss
msexchange
Attributes
-
attempt_auth
true
-
create_mutex
true
-
encrypt_network_shares
true
-
exfiltrate
true
-
mount_volumes
true
rsa_pubkey.base64
1
6ZpyU3finUDxNHYyKOj9jDsSdzZJPXF5bAiwnULj0yUK0FSU5g4FINPg9SQY0LFmkNELC4AVXi7Q8qAsIgs6lOO1psmVDDaAZicJ+ZJgzZ//vpMfsASWLb03aLpuZJ27K5lwDnNYb/sAFrpxhfPE/1S7Yh+3PoR15h9th5oAe3M=
aes.base64
1
3ZZwJZO5/qJ710wpYAjF7g==
Signatures
-
Blackmatter family
Files
-
1eea3cbd729d4493c0c0a84efe6840abf1760efe221dc971d32ca5017b5c19c2.bin.sample