General
-
Target
41ff2b0d6c9ad76caeea7221077e28f04480af7338ad724f5bbf7aec3f8a7f72
-
Size
233KB
-
Sample
230625-zgmlmaef65
-
MD5
f7c625d7263c18ecc8168c219dc9724c
-
SHA1
d2420a7a7e230efb3a7747c82cc6c45cac439a1f
-
SHA256
41ff2b0d6c9ad76caeea7221077e28f04480af7338ad724f5bbf7aec3f8a7f72
-
SHA512
78844189eba5420cdcf0ed13fb65cfd1a0fdafffd25fde409a376b49143910fa7ad2c367499e7beb70f872aea3172cabf909dd7ce312598177c648f9b7f8ae90
-
SSDEEP
6144:t5/xaoPuPKgyVX1e6IreazzIb4iue7G2r:t7a4lJ1e6IrotG2r
Behavioral task
behavioral1
Sample
41ff2b0d6c9ad76caeea7221077e28f04480af7338ad724f5bbf7aec3f8a7f72.exe
Resource
win7-20230621-en
Behavioral task
behavioral2
Sample
41ff2b0d6c9ad76caeea7221077e28f04480af7338ad724f5bbf7aec3f8a7f72.exe
Resource
win10v2004-20230621-en
Malware Config
Targets
-
-
Target
41ff2b0d6c9ad76caeea7221077e28f04480af7338ad724f5bbf7aec3f8a7f72
-
Size
233KB
-
MD5
f7c625d7263c18ecc8168c219dc9724c
-
SHA1
d2420a7a7e230efb3a7747c82cc6c45cac439a1f
-
SHA256
41ff2b0d6c9ad76caeea7221077e28f04480af7338ad724f5bbf7aec3f8a7f72
-
SHA512
78844189eba5420cdcf0ed13fb65cfd1a0fdafffd25fde409a376b49143910fa7ad2c367499e7beb70f872aea3172cabf909dd7ce312598177c648f9b7f8ae90
-
SSDEEP
6144:t5/xaoPuPKgyVX1e6IreazzIb4iue7G2r:t7a4lJ1e6IrotG2r
Score10/10-
Detect Blackmoon payload
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-