blackguard | 45d3aaddefc1dff057687f38bbe8124e48a98e5dd053f6f62496f3dc3b48eef0 | Triage

Submit
Reports

Overview

overview

Static

static

f2d25cb96d...4d.exe

windows7_x64

f2d25cb96d...4d.exe

windows10-2004_x64

Sharing

General

Target

7681506159.zip
Size

1.7MB
Sample

220713-l8dadafhg8
MD5

cfe8f908a47b49bbf5d173d3f9e1cc3b
SHA1

3c84bef349e209417218145c29198d394d61a58a
SHA256

45d3aaddefc1dff057687f38bbe8124e48a98e5dd053f6f62496f3dc3b48eef0
SHA512

864ccb984779948ffee2a07c85f77f88f8d63260631ecc489e4dfbc727f195d7e5991db542c9adbf1f15e880284e92276db9f4a00891892f50ce195929437d18

Score

10^/10

blackguard stealer suricata

Static task

static1

Behavioral task

behavioral1

Sample

f2d25cb96d3411e4696f8f5401cb8f1af0d83bf3c6b69f511f1a694b1a86b74d.exe

Resource

win7-20220414-en

blackguard stealer suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f2d25cb96d3411e4696f8f5401cb8f1af0d83bf3c6b69f511f1a694b1a86b74d.exe

Resource

win10v2004-20220414-en

blackguard stealer suricata

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

blackguard

C2

https://onetwostep.at/

Targets

- Target
  
  f2d25cb96d3411e4696f8f5401cb8f1af0d83bf3c6b69f511f1a694b1a86b74d
- Size
  
  1.9MB
- MD5
  
  2d28df44857d0be0b1ca1e5b4987894e
- SHA1
  
  a442fa9d272cfdbbcb406c8ef02c9a5d669c6fed
- SHA256
  
  f2d25cb96d3411e4696f8f5401cb8f1af0d83bf3c6b69f511f1a694b1a86b74d
- SHA512
  
  7a6b19655597832c7c75518fe7f01f9916b30d70b61b0d617e93fb3209aafc2ce99687e0dcbaea3d46ac68f315a43a8fd7308dfd215854f706c7ebe9c0518d5a
Score

10^/10

blackguard stealer suricata
- BlackGuard
  Infostealer first seen in Late 2021.
  stealer blackguard
- suricata: ET MALWARE Observed BlackGuard_v2 Domain in DNS Lookup (onetwostep .at)
  suricata: ET MALWARE Observed BlackGuard_v2 Domain in DNS Lookup (onetwostep .at)
  suricata
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackguardstealersuricata

behavioral2

blackguardstealersuricata

© 2018-2025

Terms | Privacy