blackmoon | 3a4eca407b4d15f2c1863e58a9089b35a4ca85b7f044ca978e700eacde0bf751 | Triage

Sharing

General

Target

3a4eca407b4d15f2c1863e58a9089b35a4ca85b7f044ca978e700eacde0bf751
Size

7.2MB
Sample

240522-q4jntadf31
MD5

da01f4b10604431e1189bbf1f64fb052
SHA1

fd3821aae65cdf41ffbec3b050fb8a76980d6f2e
SHA256

3a4eca407b4d15f2c1863e58a9089b35a4ca85b7f044ca978e700eacde0bf751
SHA512

8dd22a8f0cbfbb571e967d02f87567b68b3ebc8f23ce5c6a61f6ebbaad42d15e0a975bfdf76a6e388ba520c0f53df35929b53bc9be1bb6f7a163a1fa2dd11b08
SSDEEP

196608:pD9JcDKlFBqgz0RK85Xs5XvyCMYpr/nGLtwN:N9ODKlFBq5XsBvyCpLGLtw

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  3a4eca407b4d15f2c1863e58a9089b35a4ca85b7f044ca978e700eacde0bf751
- Size
  
  7.2MB
- MD5
  
  da01f4b10604431e1189bbf1f64fb052
- SHA1
  
  fd3821aae65cdf41ffbec3b050fb8a76980d6f2e
- SHA256
  
  3a4eca407b4d15f2c1863e58a9089b35a4ca85b7f044ca978e700eacde0bf751
- SHA512
  
  8dd22a8f0cbfbb571e967d02f87567b68b3ebc8f23ce5c6a61f6ebbaad42d15e0a975bfdf76a6e388ba520c0f53df35929b53bc9be1bb6f7a163a1fa2dd11b08
- SSDEEP
  
  196608:pD9JcDKlFBqgz0RK85Xs5XvyCMYpr/nGLtwN:N9ODKlFBq5XsBvyCpLGLtw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2