General
-
Target
fe1b1277eee792a9684afda06569506e29b0816f61e8957964efdb9f2c4e3e5e
-
Size
2.8MB
-
Sample
230625-yskqqsee67
-
MD5
92cf3d8aa1571e9cb316763d4f08d307
-
SHA1
733244edc78131518599e963cea7766d31dd161a
-
SHA256
fe1b1277eee792a9684afda06569506e29b0816f61e8957964efdb9f2c4e3e5e
-
SHA512
d9c737e2873cae27a328d85c8b01a72a0f86f52f77bf4821b870300b85ec556ce8aed854ecda6dc640b9fb336881541b064b79112e183e7753d5c4b2b54232dc
-
SSDEEP
49152:5cqyId46NIsQqBuoNbWpZ6ZbaHcYz5aAVKiw6ZWqTG93jJ3hWpVc:GbIC6N93BtIg3Yz5J/693k
Static task
static1
Behavioral task
behavioral1
Sample
fe1b1277eee792a9684afda06569506e29b0816f61e8957964efdb9f2c4e3e5e.exe
Resource
win7-20230621-en
Malware Config
Targets
-
-
Target
fe1b1277eee792a9684afda06569506e29b0816f61e8957964efdb9f2c4e3e5e
-
Size
2.8MB
-
MD5
92cf3d8aa1571e9cb316763d4f08d307
-
SHA1
733244edc78131518599e963cea7766d31dd161a
-
SHA256
fe1b1277eee792a9684afda06569506e29b0816f61e8957964efdb9f2c4e3e5e
-
SHA512
d9c737e2873cae27a328d85c8b01a72a0f86f52f77bf4821b870300b85ec556ce8aed854ecda6dc640b9fb336881541b064b79112e183e7753d5c4b2b54232dc
-
SSDEEP
49152:5cqyId46NIsQqBuoNbWpZ6ZbaHcYz5aAVKiw6ZWqTG93jJ3hWpVc:GbIC6N93BtIg3Yz5J/693k
-
Detect Blackmoon payload
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-