General
-
Target
849fec459d4d324b5f9c60b6ee9029b015be558e7da5a018d35351ddb785cfdc
-
Size
50KB
-
Sample
221123-xrl2qsag6y
-
MD5
4cee1caa18bb82d11873903b4e1a741c
-
SHA1
8a7b8912b7648f4690edbe80a09f87e18ff791f4
-
SHA256
849fec459d4d324b5f9c60b6ee9029b015be558e7da5a018d35351ddb785cfdc
-
SHA512
0b64f3e05dca851900ba1c1c8380d13c51072f8fb46bbc3f41e166c870e793ce840e79eabdf3bc10d9ab801c64eb0ed8f112fb86c54c3aaea264d738215f32f2
-
SSDEEP
1536:BEU1EvvUVjcMzbJaP60ITUCGFv6ZuXztLLb:BxOvvOcMzwPgTUCQvB3
Static task
static1
Behavioral task
behavioral1
Sample
849fec459d4d324b5f9c60b6ee9029b015be558e7da5a018d35351ddb785cfdc.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
849fec459d4d324b5f9c60b6ee9029b015be558e7da5a018d35351ddb785cfdc.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
849fec459d4d324b5f9c60b6ee9029b015be558e7da5a018d35351ddb785cfdc
-
Size
50KB
-
MD5
4cee1caa18bb82d11873903b4e1a741c
-
SHA1
8a7b8912b7648f4690edbe80a09f87e18ff791f4
-
SHA256
849fec459d4d324b5f9c60b6ee9029b015be558e7da5a018d35351ddb785cfdc
-
SHA512
0b64f3e05dca851900ba1c1c8380d13c51072f8fb46bbc3f41e166c870e793ce840e79eabdf3bc10d9ab801c64eb0ed8f112fb86c54c3aaea264d738215f32f2
-
SSDEEP
1536:BEU1EvvUVjcMzbJaP60ITUCGFv6ZuXztLLb:BxOvvOcMzwPgTUCQvB3
Score10/10-
Detect Blackmoon payload
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-