General
-
Target
d3a64f10c3ffee75d8871e56b86cfb5addd2bd8c791fffac87c29ac811d05305
-
Size
4.5MB
-
Sample
240522-qrffmadb7y
-
MD5
538973fb715f9657d6369b95880d034f
-
SHA1
0ea309bdf440b33d3e0d718abbf7543a9760c21e
-
SHA256
d3a64f10c3ffee75d8871e56b86cfb5addd2bd8c791fffac87c29ac811d05305
-
SHA512
736c2fb40eb8b34d3f0a7735fdd06647a432d7c4650b2ad9c3e58e4da9486621a42513198fff2ce9279fb2250a9d79b96232f31d2a06605e0de23c9bd4e48822
-
SSDEEP
98304:GRsbxSZ5w64GYL/6YEA6CXRZLhsK3oUFrieBQJ4OiZrq1DfPHNADtV6v+pT:GKbgIGhG3oUF+M24O7NADtV6v+p
Static task
static1
Behavioral task
behavioral1
Sample
d3a64f10c3ffee75d8871e56b86cfb5addd2bd8c791fffac87c29ac811d05305.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
d3a64f10c3ffee75d8871e56b86cfb5addd2bd8c791fffac87c29ac811d05305
-
Size
4.5MB
-
MD5
538973fb715f9657d6369b95880d034f
-
SHA1
0ea309bdf440b33d3e0d718abbf7543a9760c21e
-
SHA256
d3a64f10c3ffee75d8871e56b86cfb5addd2bd8c791fffac87c29ac811d05305
-
SHA512
736c2fb40eb8b34d3f0a7735fdd06647a432d7c4650b2ad9c3e58e4da9486621a42513198fff2ce9279fb2250a9d79b96232f31d2a06605e0de23c9bd4e48822
-
SSDEEP
98304:GRsbxSZ5w64GYL/6YEA6CXRZLhsK3oUFrieBQJ4OiZrq1DfPHNADtV6v+pT:GKbgIGhG3oUF+M24O7NADtV6v+p
-
Detect Blackmoon payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-