blackmoon | cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04 | Triage

Sharing

General

Target

cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04
Size

7.2MB
Sample

240523-dv5tgaca4x
MD5

becadfad0cfbd2e182ed9f282f3347bf
SHA1

0f9dcb8dae21726e9111c7f5508f00a8abd3aece
SHA256

cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04
SHA512

d72f2ed4397834704049d59d583dd3e6384a472c5c80d4e8c8fe5480327ab7068eebfffd45f5ec00da4c8ba74ead8937f9d54c2511a19ebbaceee7d250be9b73
SSDEEP

196608:9DaJcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:ZaODKlFBq7XsBvyCpLGLtw

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04
- Size
  
  7.2MB
- MD5
  
  becadfad0cfbd2e182ed9f282f3347bf
- SHA1
  
  0f9dcb8dae21726e9111c7f5508f00a8abd3aece
- SHA256
  
  cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04
- SHA512
  
  d72f2ed4397834704049d59d583dd3e6384a472c5c80d4e8c8fe5480327ab7068eebfffd45f5ec00da4c8ba74ead8937f9d54c2511a19ebbaceee7d250be9b73
- SSDEEP
  
  196608:9DaJcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:ZaODKlFBq7XsBvyCpLGLtw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2