General
-
Target
31037bf5c4950c7ff153b0165da0e48d67535a5b76fae73f56c74b7fbb650567
-
Size
113KB
-
Sample
240308-mm42msch35
-
MD5
8ec61d16929bead775917210565d5270
-
SHA1
471389556e47d43f54c559ce87bc4e24183efd3a
-
SHA256
31037bf5c4950c7ff153b0165da0e48d67535a5b76fae73f56c74b7fbb650567
-
SHA512
425629bb14368425ecfb6347a717d1fbd90a184906deb9512ea992ebf32eb32450c11b427d367e83ba46ed20a6f9adba66fc8451830290f8d3a4e22236e927c3
-
SSDEEP
1536:9zICS4AT6GxdEe+TOdincJXvKvtZgZM2HT02F4mHI5PsOqy:uR7auJXS1Zgu2HT025Hs
Malware Config
Extracted
blackmatter
1.2
512478c08dada2af19e49808fbda5b0b
- Username:
aheisler@hhcp.com - Password:
120Heisler
- Username:
dsmith@hhcp.com - Password:
Tesla2019
- Username:
administrator@hhcp.com - Password:
iteam8**
https://paymenthacks.com
http://paymenthacks.com
https://mojobiden.com
http://mojobiden.com
-
attempt_auth
true
-
create_mutex
true
-
encrypt_network_shares
true
-
exfiltrate
true
-
mount_volumes
true
Targets
-
-
Target
31037bf5c4950c7ff153b0165da0e48d67535a5b76fae73f56c74b7fbb650567
-
Size
113KB
-
MD5
8ec61d16929bead775917210565d5270
-
SHA1
471389556e47d43f54c559ce87bc4e24183efd3a
-
SHA256
31037bf5c4950c7ff153b0165da0e48d67535a5b76fae73f56c74b7fbb650567
-
SHA512
425629bb14368425ecfb6347a717d1fbd90a184906deb9512ea992ebf32eb32450c11b427d367e83ba46ed20a6f9adba66fc8451830290f8d3a4e22236e927c3
-
SSDEEP
1536:9zICS4AT6GxdEe+TOdincJXvKvtZgZM2HT02F4mHI5PsOqy:uR7auJXS1Zgu2HT025Hs
Score3/10 -