Overview

overview

10

Static

static

10

v2c.exe

windows7_x64

10

v2c.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    v2c.exe

  • Size

    95KB

  • MD5

    757139e76fae876ae50dd2c3ac11d5d8

  • SHA1

    1c150493014d29c1f8a51e397e527f7d7c1476c7

  • SHA256

    9bae897c19f237c22b6bdc024df27455e739be24bed07ef0d409f2df87eeda58

  • SHA512

    852febe5dc991fa6dc5ff994b2de18548e98a2f53de903a480ed871d9d25413159b167a3c0ff39175bbf7c339604bb1eccc2f9425415ab16089bc56e3e998974

Score
10/10
4e591a315c54e8800dae714320555fa5blackmatter

Malware Config

Extracted

Family

blackmatter

Version

3.0

Botnet

4e591a315c54e8800dae714320555fa5

Credentials

  • Protocol:     smtp
  • Port:
    587
  • Username:
    OFMO220@R5-CORE.R5.AIG.NET
  • Password:
    yhU6VJ$&amp

  • Protocol:     smtp
  • Port:
    587
  • Username:
    OSYST93@R5-CORE.R5.AIG.NET
  • Password:
    RPo@ndf9

  • Protocol:     smtp
  • Port:
    587
  • Username:
    OFMO225@R5-CORE.R5.AIG.NET
  • Password:
    DH5U87@rA0ELa2
C2

https://fluentzip.org

http://fluentzip.org
Attributes
  • attempt_auth

    true

  • create_mutex

    true

  • encrypt_network_shares

    true

  • exfiltrate

    true

  • mount_volumes

    true

rsa_pubkey.base64
aes.base64

Signatures

Files

  • v2c.exe
    .exe windows x86