blackguard | 998fc7c7edce5e45d4ee1d644865032a459cab97f1e700e7cca8b8264ffe0d98 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2692-4-0x0...ry.exe

windows7-x64

2692-4-0x0...ry.exe

windows10-2004-x64

Sharing

General

Target

2692-4-0x000000001BA20000-0x000000001BD68000-memory.dmp
Size

3.3MB
Sample

240308-ec5w7aee99
MD5

42cee7c3a7d1704ee390524d2abb263b
SHA1

f470ed5779648c629aaa04a71ea1d4d02375d85a
SHA256

998fc7c7edce5e45d4ee1d644865032a459cab97f1e700e7cca8b8264ffe0d98
SHA512

c540af257f002b37553dcc4d184dc31dddcc500d75957ca1cf718247f91819a9a3f435ccdc9255fb77e36537e08fce5c2f27cff0799c96606d7aebb1e4bab9ab
SSDEEP

98304:Q2D5QUcwti78OqJ7TPBsHgMWJ0bJpqcV/:1D5QUcwti7TQlsBWJq1x

Score

10^/10

blackguard stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2692-4-0x000000001BA20000-0x000000001BD68000-memory.exe

Resource

win7-20240221-en

blackguard stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

2692-4-0x000000001BA20000-0x000000001BD68000-memory.exe

Resource

win10v2004-20240226-en

blackguard stealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

blackguard

C2

http://94.142.138.111

Targets

- Target
  
  2692-4-0x000000001BA20000-0x000000001BD68000-memory.dmp
- Size
  
  3.3MB
- MD5
  
  42cee7c3a7d1704ee390524d2abb263b
- SHA1
  
  f470ed5779648c629aaa04a71ea1d4d02375d85a
- SHA256
  
  998fc7c7edce5e45d4ee1d644865032a459cab97f1e700e7cca8b8264ffe0d98
- SHA512
  
  c540af257f002b37553dcc4d184dc31dddcc500d75957ca1cf718247f91819a9a3f435ccdc9255fb77e36537e08fce5c2f27cff0799c96606d7aebb1e4bab9ab
- SSDEEP
  
  98304:Q2D5QUcwti78OqJ7TPBsHgMWJ0bJpqcV/:1D5QUcwti7TQlsBWJq1x
Score

10^/10

blackguard stealer
- BlackGuard
  Infostealer first seen in Late 2021.
  stealer blackguard
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackguardstealer

behavioral2

blackguardstealer

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.