blackguard | c5eaaefc4ed4c122eb81710b1e4cd97e173cc9d088306a202701c5eee647655a

Sharing

Copy URL

Twitter E-mail

General

Target

c5eaaefc4ed4c122eb81710b1e4cd97e173cc9d088306a202701c5eee647655a
Size

23.1MB
Sample

240207-chnhzsbfa2
MD5

fbee528faeb63a602d076def48525bba
SHA1

0fe143da1917868eec9cd52da149fb317e8c52b6
SHA256

c5eaaefc4ed4c122eb81710b1e4cd97e173cc9d088306a202701c5eee647655a
SHA512

7ecfec63cac1a4b979cbae11b1e02ae9b560dd24777d8ef6cff0202546aed8abcd79a69a2919298f3d9919b8ce5d496e0081fd54530ff0bad8d465bacc00f4ea
SSDEEP

393216:NtQ9AWKUS+qhQN1Gwunul2FsY6oWbAF/ZoKRP+PoBOLbaZZvv+NzuS1RpRQXIf0C:w9qUfqSN0wH8Ft6omamSP+PVcZH+NfCi

Score

10^/10

blackguard macro

Malware Config

Targets

- Target
  
  Setup_WgpsNet_20230907.exe
- Size
  
  23.2MB
- MD5
  
  735b18f67aa75222cee60d3d308e41c4
- SHA1
  
  97e419a3f0416a17bd9a1a80ce6a05db50cd3f35
- SHA256
  
  092de242753e626fecf7f5b9b0c94e7abcf039a1f65e8553ecb123ec729efd18
- SHA512
  
  e96351321728c10802ceb0f88afea4c1e1289703551cd9a361bf44bcb91a1ed3991eca85a87c89f5a0abe6ac23c003dc43a794de022ee18d0fa790c248c87a27
- SSDEEP
  
  393216:IFB2tj4OBGDZsg9I63GZQjwGIFOnKc4PvGlHZUhhq5VKzm1rzCivghQ/gNQosA9j:IFWsOwD2gL2ZWwGAaEvGl6QVOqrphgND
Score

3^/10
behavioral1 behavioral2
- Target
  
  Bin/3DTools.dll
- Size
  
  72KB
- MD5
  
  321561b3d9ef6d47cda23e7df765786c
- SHA1
  
  dd8b8195dc9f8d1dd6c68121f5affba9920a2bb6
- SHA256
  
  2ef826401249df66cc4ae5e4609408123273ba253bf4b321c2913d1f3501439c
- SHA512
  
  486c43822376f9a06bd22b5cf39763d2fb4a5cc3deffc1a8ba98a45a43ea9baf371a407d9b796eeb748b5389b03851defcd81a43571a026bc665bdf0d48c1885
- SSDEEP
  
  1536:TSxKhmrPG0UcJUH7bnwxs4laf31lXUWKu9au:TVvq24xv8tpKu9au
Score

1^/10
behavioral3 behavioral4
- Target
  
  Bin/AppModule.InterProcessComm.dll
- Size
  
  16KB
- MD5
  
  0d6e4c7019964a71bd61fd25c45bf641
- SHA1
  
  0939e3cecd6e64b7305edf97b86ff48074a141bc
- SHA256
  
  aae68c2e03b5ae76a3feea6a4386ed613ce8eb350f578c0a5549c6be8c42a6a2
- SHA512
  
  051968bf8b77e1af4322aa3924cd1a9dd94cdb29085da34ef7b138786b136acf52d7ab57d3b3aad08fffee0ca3c46d68eae62acc9d31475241f3c3e06244142e
- SSDEEP
  
  96:d9v5H4OpmT/zy3qgFjljcI7xRCypCNDCX:dxaOpwWqgFjd7xRCypCNDCX
Score

1^/10
behavioral5 behavioral6
- Target
  
  Bin/AppModule.NamedPipes.dll
- Size
  
  24KB
- MD5
  
  7fab39723dfc14beaa18c426f06adc11
- SHA1
  
  5018fcb7cfe8328ea07d293df3b64f9539a7faa8
- SHA256
  
  ad659c39e758cf56bd94e938a10c54e72dbbe35889ec4cbbb4ff5ade1c881fa4
- SHA512
  
  9f984dcba94329750dc202008c0c7ab7b9009d03a6ae31af5a43cb1cd992189a0ba053c1e3e0c4ee78e2afcd2a23595f9f2ef82be6a6869f972dbe0c62f7619a
- SSDEEP
  
  192:ktp+u020M0i0kSupZOfws8H5ypJGJyFmhoRxhyere6lqVNHznEpe7jvd2S1VD:ktIfNM0bupIXOEJGJyFmhoAereeqvAi
Score

1^/10
behavioral7 behavioral8
- Target
  
  Bin/AppModule.Struct.dll
- Size
  
  16KB
- MD5
  
  9c89ef540cb0a1080b526bdc2d898088
- SHA1
  
  2d47cef944274933193fdcea57606067ce514c3a
- SHA256
  
  3a2666a46067800d654cacac691ef572cf4c2a029d68023d90d121b3926f9761
- SHA512
  
  cfc2c1571ee28d3504d8a4426d1029f1c60a041a93507b7478f1468306ddf131dc61176a4d83b6ab772529e3234a18a1958897694a24d35960e6ef4e3ed3f7a2
- SSDEEP
  
  48:6U/+zRLMv3XjTn3XBA72JU1If1W7/z6/S4lSDDlSbKG:oq3TTnu1M7ZlmDl
Score

1^/10
behavioral10 behavioral9
- Target
  
  Bin/AxInterop.KERNELLib.dll
- Size
  
  36KB
- MD5
  
  ed16cb9d8390b3fa88b6fbfe0c304b4e
- SHA1
  
  c3301b1dd42e341e30addce053284b6e2982c612
- SHA256
  
  4c6bbb726590572e9586e03fea92aec2dabb766aab8154eb421a8e42f1b74e8c
- SHA512
  
  07a81d932b7261bb67faaf6c794888b0650e8d53093ef4c89f33f6b945cfc05b05438e84ff4d8e662c45a27b7db29763802147d887136d38f772765dc7665138
- SSDEEP
  
  768:Dk7tRhNoj8uI6G6TadURLl3KCB7Xl5zxr6yZTmWX1bbljN9RLpTV:ktuG+jNTt
Score

1^/10
behavioral11 behavioral12
- Target
  
  Bin/AxInterop.KFTALARMLISTLib.dll
- Size
  
  14KB
- MD5
  
  1a7bc7d03afe04791a307ae7930cb5d9
- SHA1
  
  0abf73e1bfb071ed663d536204d2ffb804b80b4d
- SHA256
  
  2a2fbd82806a69569cb38e47edd72d1c78d2483e4fb84f1420db334da5b6662f
- SHA512
  
  fb107abf19ea4d40e2685f78919ef89e280577047f1af05c371fe30da22984b555651e079647266dea857b6530117719cd3556c2d5645cd3b111106e8607148e
- SSDEEP
  
  384:p8Teo9V2pO/p2jVGj/izk2FNkW5pT2YvvZJBwFyofV:STebO4qazk2FNkW5pT2YHZSJ9
Score

1^/10
behavioral13 behavioral14
- Target
  
  Bin/AxInterop.KFTCONFIGWINDOWLib.dll
- Size
  
  6KB
- MD5
  
  6b9303f8daf17d73bd02a024786676e6
- SHA1
  
  5b31862c0623e6af0856c83ecb677262c9a33a99
- SHA256
  
  4ffd655fa13deb5ffa19efdc181db5daf65c1d8a03c1497b5bbba691ddd60af7
- SHA512
  
  d128014af2ae07694ed71db33b671f472aad0824f5f1f1cf46e83af619bc3947543b46d87b403f204862278c0c9b5d6f7e8a74eaa7c8180a94a3c455ac01574a
- SSDEEP
  
  96:HB0GMI3FH49VKZRF//G7oXbrrcgl/fMQNsvqS3ZNDa5YuA:HB0GMI3FGKF/MozcgxN2pm
Score

1^/10
behavioral15 behavioral16
- Target
  
  Bin/Balloon.dll
- Size
  
  14KB
- MD5
  
  1e22b0eac7badb730ed3ac9bd7c65a9f
- SHA1
  
  f47a2942e8204bb2a4d432b765a6cc4c8089c727
- SHA256
  
  851180575ab920a5e1c5269f35fe635dd8951f9c09e64e6bfa6a15871e7884d5
- SHA512
  
  4d5de891d0f2ed6124b85c0cfd04dc4c46ff16c95179efdc5b73f214c2164f4b7fd2c3594e60eb4ea5a2d1ddddfd3db0ddb15c35c09f4e1245d4309b22a4c8dc
- SSDEEP
  
  384:BzKZH1zemFpNs6y94OA1DLNubjf4FLuc:0ZR1FTy94OAx8jwFCc
Score

1^/10
behavioral17 behavioral18
- Target
  
  Bin/BarChart.dll
- Size
  
  45KB
- MD5
  
  7fa9ee5ec7b30dfdd27542d7919ea280
- SHA1
  
  513fec4b5784fd21a6ab586e3484f29db786b88e
- SHA256
  
  6a07f4f88200d2779254f37866d55364e30a0641f6023b6aa2d9da14f9dd3e9a
- SHA512
  
  b0ade43a7f1b1549915e8b52056113bf7f14d72130b9ec3591c0d57089eeb832df672070b340218f53cfd5633e3674204e40613aa7170cf168025f8ad943d5cf
- SSDEEP
  
  768:mPvPMIhy6bamgaqG8ZZKiJFsNo5mwj7/LPpmxLSl35iRbIif5tQvdze:QvPMIy6bVhqT1awkx0iumsdze
Score

1^/10
behavioral19 behavioral20
- Target
  
  Bin/ComboTime.dll
- Size
  
  14KB
- MD5
  
  e586ac7fdbad731d18ec7c90de33dc12
- SHA1
  
  766e376c9ff6352856c74427f384f0edb5a69586
- SHA256
  
  def549d9a7fd394ead8de877fc14f3bc49bb750f3734914b9f3b3b019ec10da6
- SHA512
  
  fb32b7ee3cc3c128f30ba291ae95588b0ab8ecabf2185ba0441bf7026adc80e6e6f015f1b85b7f2f9b6545d95e9e51c070be4db526b66a87c1aebd2814656afb
- SSDEEP
  
  384:7RAL8XoYVtCGb1ehsLrWFwaN3iEV9cXZ5/RPxkkZEntyECT:oHwEV9cXZny0EntZO
Score

1^/10
behavioral21 behavioral22
- Target
  
  Bin/CustomNumericUpDown.dll
- Size
  
  5KB
- MD5
  
  dc8978686206644a84898927a03f0a67
- SHA1
  
  9c790d79bd19b2a6014d9072bf56d6507ffc8fb0
- SHA256
  
  20e426f56aca5eef8089d24eded4c311be40589c219adcedaaa466b2bf182501
- SHA512
  
  3ec6aa9b034df00d6411ba44e74be169c03d6f9293a0e6020980ed8fa9ce11bd971233dcacb812ae92da623fad5b32ce0572e011e4f705b919a869db42057fba
- SSDEEP
  
  96:VAqEDjeze6KXkJ5lphcu5Bz+4Nt+fB157cg:ziez9JzrNpNMfRf
Score

1^/10
behavioral23 behavioral24
- Target
  
  Bin/DBReport.dll
- Size
  
  28KB
- MD5
  
  82d6b215bceb4dfdd36a5bd808edf068
- SHA1
  
  f5896e0a00bb441a9bfd127c5b63f704d407e945
- SHA256
  
  6699c6d5094b6276cfa7c0e475e691c6d10378bf81eb3b65aa8fcbdbf7d6f40e
- SHA512
  
  14448d77e808a2b3d63ae2a176503bb868859536d6b726a855a514543654ba523c94ca4e8f03938949e3ac4c7a3b7a115cf117565977a1873263c284291bfe1c
- SSDEEP
  
  384:WAbwAinqxM4bufaOG/2oT+8W9jXWkeLbt8zFOmEfON6N9bAf876OEg7PvcmXRgWw:dwBnyS8ysJ8AmjqVAf87lbvXMgGBNYy
Score

1^/10
behavioral25 behavioral26
- Target
  
  Bin/DTCombo.dll
- Size
  
  32KB
- MD5
  
  fdc9163d095c66073a3de40e6be9176e
- SHA1
  
  7d0a7768fdc9b6ec4a46cef8bb84c6786ad2a431
- SHA256
  
  4c746d13114e62041feb73f63a731f263edb13b49834ade3392d8a282a104fa5
- SHA512
  
  234e248b7969e6fc498df17d23225d5b804fda333bfbf1a31fe95446e9c3745fa6db059986f9ae6309c6060c154b87a3f35e99b1a1b45070daebb7d908f17943
- SSDEEP
  
  384:2ubItHleIOa5eFlASFI40dNCoLQz1vp/su09dx42PffyChAlB+SQ06qHH3t6Xmya:J044S1Vp0T902pm4XVO7rfN/jcqtb
Score

1^/10
behavioral27 behavioral28
- Target
  
  Bin/DTExport.dll
- Size
  
  63KB
- MD5
  
  7232cf468cc223eee020180e3c728e9f
- SHA1
  
  c293ceb53195ac3d87c3fed9561249b2914ea1b0
- SHA256
  
  f86b813399156202bab5304379ecf84b18c116e51225aee41dea89aacde36e2f
- SHA512
  
  75debb8a44f0fea53a2410a298642c42ccad7260e1e4a9f724cfc7d0afba710ad948d72f87de42582e1b078d00513ed4408e1cdc08bf1b71a39968200747b750
- SSDEEP
  
  768:2QDJKt6V1Ic0jZUi7HS6L5+pcVXnwM4/w9ZWkw3aGnpBmyI722W4E:80IlNGQFx/ZXmpBmd22W4E
Score

1^/10
behavioral29 behavioral30
- Target
  
  Bin/DataGridViewAutoFilter.dll
- Size
  
  41KB
- MD5
  
  338cd69f89556863ea036108cc7c9a9f
- SHA1
  
  9d86d66bf7d8ee90e132d9e002fc096d7ab7143e
- SHA256
  
  2f226c3539bd7f8136dc38147b68a8707ef0d00e0ea54fbd13d5046b71471056
- SHA512
  
  73f0561ab47d77fa14b31d36bc1bcad4d6f6877b523e60129bac4cba1dc4420a2662ce7746661945cfe2f6c4634d626b74f6b293dd38b963cce398a73fc9f76d
- SSDEEP
  
  768:M2DaoMk+oMkPFCDcsVT8lOTNRq3E2rjlT9CJpgixEnDL:YoMk+oMkPID5v2rJ5CJpgixE3
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32