c63fa50533239d7dc7d5c8530de2adb045f359bba2f8e051ff653a3641cdd9ec | Triage

Submit
Reports

Overview

overview

8

Static

static

BlackShot_...er.exe

windows7-x64

6

BlackShot_...er.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

BlackShot_Global_downloader.exe
Size

2.7MB
Sample

230201-ca4v1abd56
MD5

9ce9eef45afba61fd683380082438e5a
SHA1

3f6acf5d5a7d30e948296fc3c48d91cb898c9c9f
SHA256

c63fa50533239d7dc7d5c8530de2adb045f359bba2f8e051ff653a3641cdd9ec
SHA512

28e32724f0dcdd340107a75fcaf8eb7777d1802358f1e5ae961cae63d18f6d23f6a6bebfc944c5e360152c4f7b03a92a23b84dc7638f873d606a829717c681dd
SSDEEP

49152:Ik0mlnVl5V3dWD+hAA9abgADyA0xT99Cwi8AlUMK+XJngz4xF:Ik0mpVzRk6AAMMADyA0knlUMKo

Score

8^/10

evasion trojan

Static task

static1

Behavioral task

behavioral1

Sample

BlackShot_Global_downloader.exe

Resource

win7-20220812-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

BlackShot_Global_downloader.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  BlackShot_Global_downloader.exe
- Size
  
  2.7MB
- MD5
  
  9ce9eef45afba61fd683380082438e5a
- SHA1
  
  3f6acf5d5a7d30e948296fc3c48d91cb898c9c9f
- SHA256
  
  c63fa50533239d7dc7d5c8530de2adb045f359bba2f8e051ff653a3641cdd9ec
- SHA512
  
  28e32724f0dcdd340107a75fcaf8eb7777d1802358f1e5ae961cae63d18f6d23f6a6bebfc944c5e360152c4f7b03a92a23b84dc7638f873d606a829717c681dd
- SSDEEP
  
  49152:Ik0mlnVl5V3dWD+hAA9abgADyA0xT99Cwi8AlUMK+XJngz4xF:Ik0mpVzRk6AAMMADyA0knlUMKo
Score

8^/10

evasion trojan
- Downloads MZ/PE file
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy