General
-
Target
51018acee0414afb3da77a30c9188b7d5d47d8a3983f64787761a91bd4726a99.exe
-
Size
78KB
-
Sample
230612-wn9sysdg6y
-
MD5
ca62c94f654d61019611e7a516df0080
-
SHA1
f4f25145f2f60c3eb8a94663c5c520f3df260333
-
SHA256
51018acee0414afb3da77a30c9188b7d5d47d8a3983f64787761a91bd4726a99
-
SHA512
8c64a1f9bbf34b7b0a26835db8de8e3e3ffcd3a8411d0ac02462cafb9d962c334036bdf68162a90107793421d6234aa2f4ecabbcfc633b0921a65493a74967cf
-
SSDEEP
1536:RVqRnMVRsqoacHCRPFrCNsaqcVc9IjQbJbamNV1uhV+RutxQldHJPUl3H+U0:RVqGsXC/CNfqv9IjQ9baqV1uhV+Raxar
Static task
static1
Behavioral task
behavioral1
Sample
51018acee0414afb3da77a30c9188b7d5d47d8a3983f64787761a91bd4726a99.exe
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
51018acee0414afb3da77a30c9188b7d5d47d8a3983f64787761a91bd4726a99.exe
-
Size
78KB
-
MD5
ca62c94f654d61019611e7a516df0080
-
SHA1
f4f25145f2f60c3eb8a94663c5c520f3df260333
-
SHA256
51018acee0414afb3da77a30c9188b7d5d47d8a3983f64787761a91bd4726a99
-
SHA512
8c64a1f9bbf34b7b0a26835db8de8e3e3ffcd3a8411d0ac02462cafb9d962c334036bdf68162a90107793421d6234aa2f4ecabbcfc633b0921a65493a74967cf
-
SSDEEP
1536:RVqRnMVRsqoacHCRPFrCNsaqcVc9IjQbJbamNV1uhV+RutxQldHJPUl3H+U0:RVqGsXC/CNfqv9IjQ9baqV1uhV+Raxar
-
Detect Blackmoon payload
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-