blackmoon | 0fdf82bbddc293eaabfc41ec0216e160f4c17644c64f526f263ee8d8b79deb97 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fdf82bbddc293eaabfc41ec0216e160f4c17644c64f526f263ee8d8b79deb97
Size

9.0MB
Sample

240524-b2ke1agf3v
MD5

6fa08930ca990cd194a6737b1559be02
SHA1

925dc56c2e66b7e093efffa72e1bb09862297c67
SHA256

0fdf82bbddc293eaabfc41ec0216e160f4c17644c64f526f263ee8d8b79deb97
SHA512

26a8932ae7c02b4593078e9f8f1f67960d3fc8c2382658130c8ac8bf12b96738bb9b8379614ef6c613393d8f0b2d66f95c3c00143830792ea8529442551a620c
SSDEEP

196608:nCJcDKlFBqZcPzFwDxURK8vyqByLdlf3hRQIgLKN:CODKlFBqauayOclfhRQIG2

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  0fdf82bbddc293eaabfc41ec0216e160f4c17644c64f526f263ee8d8b79deb97
- Size
  
  9.0MB
- MD5
  
  6fa08930ca990cd194a6737b1559be02
- SHA1
  
  925dc56c2e66b7e093efffa72e1bb09862297c67
- SHA256
  
  0fdf82bbddc293eaabfc41ec0216e160f4c17644c64f526f263ee8d8b79deb97
- SHA512
  
  26a8932ae7c02b4593078e9f8f1f67960d3fc8c2382658130c8ac8bf12b96738bb9b8379614ef6c613393d8f0b2d66f95c3c00143830792ea8529442551a620c
- SSDEEP
  
  196608:nCJcDKlFBqZcPzFwDxURK8vyqByLdlf3hRQIgLKN:CODKlFBqauayOclfhRQIG2
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2