blackmoon | a7f7f8b4f9870c6ebdeec207d6256d0fa432a333562e3ed9befb7616725a3e83 | Triage

Sharing

General

Target

a7f7f8b4f9870c6ebdeec207d6256d0fa432a333562e3ed9befb7616725a3e83
Size

7.2MB
Sample

240523-zj3qmafg2t
MD5

5ffca8b2d3a9d30ef7de24f9e8415a18
SHA1

54d70a34eff2ba496ff9dfb45ca80d619e130a6e
SHA256

a7f7f8b4f9870c6ebdeec207d6256d0fa432a333562e3ed9befb7616725a3e83
SHA512

089993a1a90aaded9a7cc94f4a210dff7f718f29ab672292d2a99a3eafc5d860b114de8a01bebd1ef07604339a6e2b9fc70896ca5f0a5a327769a997b93b08cc
SSDEEP

196608:9DLJcDKlFBqhGzIRK85Xs5XvyCMYpr/nGLtwN:ZLODKlFBqzXsBvyCpLGLtw

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  a7f7f8b4f9870c6ebdeec207d6256d0fa432a333562e3ed9befb7616725a3e83
- Size
  
  7.2MB
- MD5
  
  5ffca8b2d3a9d30ef7de24f9e8415a18
- SHA1
  
  54d70a34eff2ba496ff9dfb45ca80d619e130a6e
- SHA256
  
  a7f7f8b4f9870c6ebdeec207d6256d0fa432a333562e3ed9befb7616725a3e83
- SHA512
  
  089993a1a90aaded9a7cc94f4a210dff7f718f29ab672292d2a99a3eafc5d860b114de8a01bebd1ef07604339a6e2b9fc70896ca5f0a5a327769a997b93b08cc
- SSDEEP
  
  196608:9DLJcDKlFBqhGzIRK85Xs5XvyCMYpr/nGLtwN:ZLODKlFBqzXsBvyCpLGLtw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2