Overview

overview

10

Static

static

10

5da8d2e1b3...le.exe

windows7_x64

10

5da8d2e1b3...le.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5da8d2e1b36be0d661d276ea6523760dbe3fa4f3fdb7e32b144812ce50c483fa.bin.sample

  • Size

    78KB

  • MD5

    38035325b785329e3f618b2a0b90eb75

  • SHA1

    33294a6c609b6ced2acef3964d7ec34dc0101a9a

  • SHA256

    5da8d2e1b36be0d661d276ea6523760dbe3fa4f3fdb7e32b144812ce50c483fa

  • SHA512

    675a0defdfa3de5f54ece0297d955372480f25e8b9f27fa700d5cdc2c6ecedadc7b68cac2f8e2e452bdbab6a958593f45d3eab14d6e7bbfee472383879bd7b17

Score
10/10
d58b3b69acc48f82eaa82076f97763d4blackmatter

Malware Config

Extracted

Family

blackmatter

Version

2.0

Botnet

d58b3b69acc48f82eaa82076f97763d4

C2

https://mojobiden.com

http://mojobiden.com

https://nowautomation.com

http://nowautomation.com
Attributes
  • attempt_auth

    false

  • create_mutex

    true

  • encrypt_network_shares

    true

  • exfiltrate

    true

  • mount_volumes

    true

rsa_pubkey.base64
aes.base64

Signatures

Files

  • 5da8d2e1b36be0d661d276ea6523760dbe3fa4f3fdb7e32b144812ce50c483fa.bin.sample
    .exe windows x86