General
-
Target
175d3f31b665b8071cab34ec8e4e096c88f5cc1f23c3ebb8a31536610a83713a
-
Size
5.5MB
-
Sample
240525-t4bvrabb54
-
MD5
845685bb0bd17c6fb8995580ebeda4a2
-
SHA1
d01daf799b8ab583e38306f761b788ffae258756
-
SHA256
175d3f31b665b8071cab34ec8e4e096c88f5cc1f23c3ebb8a31536610a83713a
-
SHA512
8534de13af9f7068412fc7e84f63d3ef872b3cec361a8fca6b6dd5346277b06514233620ad9e2f07654c301264349ac70a888d51701645fc1d0ae36208a2644c
-
SSDEEP
98304:vJYCxmskqL8/zQG1xVypCsb09N0rj6j4Koy2C3fN:vJYCFjwwbewju2CP
Behavioral task
behavioral1
Sample
175d3f31b665b8071cab34ec8e4e096c88f5cc1f23c3ebb8a31536610a83713a.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
175d3f31b665b8071cab34ec8e4e096c88f5cc1f23c3ebb8a31536610a83713a
-
Size
5.5MB
-
MD5
845685bb0bd17c6fb8995580ebeda4a2
-
SHA1
d01daf799b8ab583e38306f761b788ffae258756
-
SHA256
175d3f31b665b8071cab34ec8e4e096c88f5cc1f23c3ebb8a31536610a83713a
-
SHA512
8534de13af9f7068412fc7e84f63d3ef872b3cec361a8fca6b6dd5346277b06514233620ad9e2f07654c301264349ac70a888d51701645fc1d0ae36208a2644c
-
SSDEEP
98304:vJYCxmskqL8/zQG1xVypCsb09N0rj6j4Koy2C3fN:vJYCFjwwbewju2CP
-
Detect Blackmoon payload
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-