Overview

overview

10

Static

static

10

0x00070000...-3.exe

windows7-x64

10

0x00070000...-3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0x00070000000120e4-3.dat

  • Size

    4.6MB

  • Sample

    231011-q5g7dacg53

  • MD5

    eb7f803cbace4fbc19716180481fbbe1

  • SHA1

    9525001f6f88209d76baeba2eaf7a4d9325240dd

  • SHA256

    bc79161f2093625fe17b17337979ccfdcedd18ff473ec008999f21f2b77bb081

  • SHA512

    4d9cac839c2cacbfe3ff9c6a74ce22b2a68e8929dd3d89982dd6ea4640dad0e3215c6291cd0734b87c29ddf6880f8efec0bce43eb701492c6c2fe42dd0fdc886

  • SSDEEP

    98304:5Ucwti78OqJ7TPBmYVrsk9N8ivyhAdsPSQxHXK7DW/yFKq:5Ucwti7TQlBVN8iNISCXK7DW8Kq

Score
10/10
blackguardspywarestealer

Malware Config

Targets

    • Target

      0x00070000000120e4-3.dat

    • Size

      4.6MB

    • MD5

      eb7f803cbace4fbc19716180481fbbe1

    • SHA1

      9525001f6f88209d76baeba2eaf7a4d9325240dd

    • SHA256

      bc79161f2093625fe17b17337979ccfdcedd18ff473ec008999f21f2b77bb081

    • SHA512

      4d9cac839c2cacbfe3ff9c6a74ce22b2a68e8929dd3d89982dd6ea4640dad0e3215c6291cd0734b87c29ddf6880f8efec0bce43eb701492c6c2fe42dd0fdc886

    • SSDEEP

      98304:5Ucwti78OqJ7TPBmYVrsk9N8ivyhAdsPSQxHXK7DW/yFKq:5Ucwti7TQlBVN8iNISCXK7DW8Kq

    Score
    10/10
    blackguardspywarestealer

    • BlackGuard

      Infostealer first seen in Late 2021.

      stealerblackguard

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks