blackmoon | 1e8bc6b15db91499fba8590113d551a1e299cf95d7effeb23dcc183bc5c5dbe5 | Triage

Sharing

General

Target

1e8bc6b15db91499fba8590113d551a1e299cf95d7effeb23dcc183bc5c5dbe5.exe
Size

9.0MB
Sample

240524-nyrfcsgc79
MD5

57b058d0f47b6305470796f16ce79604
SHA1

e1e1d0d3d1df254edd07a5941ef770cb20bfebf9
SHA256

1e8bc6b15db91499fba8590113d551a1e299cf95d7effeb23dcc183bc5c5dbe5
SHA512

bd26bd3d16bac173756c621fe87365279f2b5292c10dc2a29c64bb9243bf6c0c85cee77a9b48734a8148559aedf1b82f1eeae6c39e743192c4160a908c9c57da
SSDEEP

196608:nBJcDKlFBqlA0wDxURK8vyqByLdlf3hRQIgLKN:BODKlFBqwayOclfhRQIG2

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  1e8bc6b15db91499fba8590113d551a1e299cf95d7effeb23dcc183bc5c5dbe5.exe
- Size
  
  9.0MB
- MD5
  
  57b058d0f47b6305470796f16ce79604
- SHA1
  
  e1e1d0d3d1df254edd07a5941ef770cb20bfebf9
- SHA256
  
  1e8bc6b15db91499fba8590113d551a1e299cf95d7effeb23dcc183bc5c5dbe5
- SHA512
  
  bd26bd3d16bac173756c621fe87365279f2b5292c10dc2a29c64bb9243bf6c0c85cee77a9b48734a8148559aedf1b82f1eeae6c39e743192c4160a908c9c57da
- SSDEEP
  
  196608:nBJcDKlFBqlA0wDxURK8vyqByLdlf3hRQIgLKN:BODKlFBqwayOclfhRQIG2
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2