Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
24-05-2024 08:46
Behavioral task
behavioral1
Sample
6dfe360c2f32baae12a092be54a2029c121306c46d573cba30dec25938f62456.exe
Resource
win7-20240508-en
2 signatures
150 seconds
General
-
Target
6dfe360c2f32baae12a092be54a2029c121306c46d573cba30dec25938f62456.exe
-
Size
5.9MB
-
MD5
8c3c9660265e06d865702e5797553061
-
SHA1
33cae2f39d043290b0abb05b609d132fe5d4e3f5
-
SHA256
6dfe360c2f32baae12a092be54a2029c121306c46d573cba30dec25938f62456
-
SHA512
1c7338f191313c5302f65aece26b5873c1d5219c60cef093f64a7c8678979847f526ada18062a0fbdd477d5dc6371f4640590f5198d337b6f2fc4da2a1466af4
-
SSDEEP
49152:HW9UTGwA9eGi9vbXr1g0/kJqSTAhifSApg8AFjGETAsm/CDRjg+rE1Eu4YZY3je5:1J/kJNAcZAkHslE4V+Y3mw
Malware Config
Signatures
-
Detect Blackmoon payload 5 IoCs
Processes:
resource yara_rule behavioral1/memory/492-2-0x0000000000400000-0x00000000008B0000-memory.dmp family_blackmoon behavioral1/memory/492-3-0x0000000000400000-0x00000000008B0000-memory.dmp family_blackmoon behavioral1/memory/492-4-0x0000000000400000-0x00000000008B0000-memory.dmp family_blackmoon behavioral1/memory/492-5-0x0000000000400000-0x00000000008B0000-memory.dmp family_blackmoon behavioral1/memory/492-6-0x0000000000400000-0x00000000008B0000-memory.dmp family_blackmoon
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/492-1-0x0000000000250000-0x0000000000251000-memory.dmpFilesize
4KB
-
memory/492-0-0x0000000000572000-0x0000000000573000-memory.dmpFilesize
4KB
-
memory/492-2-0x0000000000400000-0x00000000008B0000-memory.dmpFilesize
4.7MB
-
memory/492-3-0x0000000000400000-0x00000000008B0000-memory.dmpFilesize
4.7MB
-
memory/492-4-0x0000000000400000-0x00000000008B0000-memory.dmpFilesize
4.7MB
-
memory/492-5-0x0000000000400000-0x00000000008B0000-memory.dmpFilesize
4.7MB
-
memory/492-6-0x0000000000400000-0x00000000008B0000-memory.dmpFilesize
4.7MB