General
-
Target
2024-05-23_5fb791968a1460f815e4aba655d4c78d_mafia
-
Size
1.6MB
-
Sample
240523-ecn9facg8z
-
MD5
5fb791968a1460f815e4aba655d4c78d
-
SHA1
38172eadadf048931c71fb511b9fdd7d69f4b818
-
SHA256
4691daa9c9195dd0e1d7dbae90ba6e30a5d9fd506a118967e4796408a6399d69
-
SHA512
a15ff5e215dddb9302ebbf5b8027df7dd20d97194ef2911c543e693c56dac73c3855f987b655367208675f487b30dea944109ef5265013f46b97a8e2761d0bf7
-
SSDEEP
24576:+uOMzTVHxWd7xlr6LbfRRM5OTJ7hIVymFNlMtRVblP9PIjo3rSyp0sUPYud9mj7c:+wod7xULbpf/I07Syp0sUPYu7U2K
Behavioral task
behavioral1
Sample
2024-05-23_5fb791968a1460f815e4aba655d4c78d_mafia.exe
Resource
win7-20240215-en
Malware Config
Targets
-
-
Target
2024-05-23_5fb791968a1460f815e4aba655d4c78d_mafia
-
Size
1.6MB
-
MD5
5fb791968a1460f815e4aba655d4c78d
-
SHA1
38172eadadf048931c71fb511b9fdd7d69f4b818
-
SHA256
4691daa9c9195dd0e1d7dbae90ba6e30a5d9fd506a118967e4796408a6399d69
-
SHA512
a15ff5e215dddb9302ebbf5b8027df7dd20d97194ef2911c543e693c56dac73c3855f987b655367208675f487b30dea944109ef5265013f46b97a8e2761d0bf7
-
SSDEEP
24576:+uOMzTVHxWd7xlr6LbfRRM5OTJ7hIVymFNlMtRVblP9PIjo3rSyp0sUPYud9mj7c:+wod7xULbpf/I07Syp0sUPYu7U2K
-
Detect Blackmoon payload
-
UPX dump on OEP (original entry point)
-
Drops startup file
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-