General
-
Target
24b375ab545d73d6ecb2b8a8b71a4099b8561acb446274eab726854710d870c5
-
Size
1.2MB
-
Sample
221127-adcvksef27
-
MD5
dabbdef24d997cfeec98d06664f72bea
-
SHA1
1b0e59f221a085787267d0617014f49cd786cb8b
-
SHA256
24b375ab545d73d6ecb2b8a8b71a4099b8561acb446274eab726854710d870c5
-
SHA512
9f92622063fd713903a298a7a82bad85c6851b932381ff408f6a7ac049e863e573cbfcc732843eef45a6d67ec773a40824050950f6cf465df9e6cde16be8b533
-
SSDEEP
24576:O6rI9Eg9Z/NrgbtXQXAskv3L/Kp5uBaZaVPWXi3AWA1YXrjGKb8JWPlgfuMe:eG81KrskfbKpAa6R3AePGKUWafP
Behavioral task
behavioral1
Sample
24b375ab545d73d6ecb2b8a8b71a4099b8561acb446274eab726854710d870c5.exe
Resource
win7-20221111-en
Malware Config
Targets
-
-
Target
24b375ab545d73d6ecb2b8a8b71a4099b8561acb446274eab726854710d870c5
-
Size
1.2MB
-
MD5
dabbdef24d997cfeec98d06664f72bea
-
SHA1
1b0e59f221a085787267d0617014f49cd786cb8b
-
SHA256
24b375ab545d73d6ecb2b8a8b71a4099b8561acb446274eab726854710d870c5
-
SHA512
9f92622063fd713903a298a7a82bad85c6851b932381ff408f6a7ac049e863e573cbfcc732843eef45a6d67ec773a40824050950f6cf465df9e6cde16be8b533
-
SSDEEP
24576:O6rI9Eg9Z/NrgbtXQXAskv3L/Kp5uBaZaVPWXi3AWA1YXrjGKb8JWPlgfuMe:eG81KrskfbKpAa6R3AePGKUWafP
-
Detect Blackmoon payload
-
Executes dropped EXE
-
Sets DLL path for service in the registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-