General
-
Target
93c4ed64dc4c94a5ee75d3b71bcd05779e6144ad3e16801d0c7dd6edcf33727f
-
Size
129KB
-
Sample
221129-fwfxvaha39
-
MD5
32ceef1cc2a15e91db6645b0e1c94b54
-
SHA1
cf76717ac222d121d8ff7843627b1e31a21b8240
-
SHA256
93c4ed64dc4c94a5ee75d3b71bcd05779e6144ad3e16801d0c7dd6edcf33727f
-
SHA512
9385e85035d75519158123b8463c8f33599eef64bda32b526a5cd7ecd7b50a5bfaa1ccaba416ae1db08af344de64a98cc041a5dba9f724359c6336c23e3cfe2f
-
SSDEEP
3072:Z+WNkNXcl6hRICWl3BmFGTd2ko7o1jzzX5mTout:Z+WNOnh6CWl3VMbS3T8ToS
Static task
static1
Behavioral task
behavioral1
Sample
93c4ed64dc4c94a5ee75d3b71bcd05779e6144ad3e16801d0c7dd6edcf33727f.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
93c4ed64dc4c94a5ee75d3b71bcd05779e6144ad3e16801d0c7dd6edcf33727f.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
93c4ed64dc4c94a5ee75d3b71bcd05779e6144ad3e16801d0c7dd6edcf33727f
-
Size
129KB
-
MD5
32ceef1cc2a15e91db6645b0e1c94b54
-
SHA1
cf76717ac222d121d8ff7843627b1e31a21b8240
-
SHA256
93c4ed64dc4c94a5ee75d3b71bcd05779e6144ad3e16801d0c7dd6edcf33727f
-
SHA512
9385e85035d75519158123b8463c8f33599eef64bda32b526a5cd7ecd7b50a5bfaa1ccaba416ae1db08af344de64a98cc041a5dba9f724359c6336c23e3cfe2f
-
SSDEEP
3072:Z+WNkNXcl6hRICWl3BmFGTd2ko7o1jzzX5mTout:Z+WNOnh6CWl3VMbS3T8ToS
Score10/10-
Detect Blackmoon payload
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Modifies AppInit DLL entries
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-