blackmoon | 4e7032ec847ba5b730abf6c1abd3c90745e391e955f24539c0d68f2bd6f4d97c | Triage

Sharing

General

Target

4e7032ec847ba5b730abf6c1abd3c90745e391e955f24539c0d68f2bd6f4d97c
Size

7.2MB
Sample

240528-x5vk2aha2s
MD5

97322f271a3019ebc2aea2770f4eb271
SHA1

f15a68fa1a9aaab97cd8e565c68a550eef6d9e4a
SHA256

4e7032ec847ba5b730abf6c1abd3c90745e391e955f24539c0d68f2bd6f4d97c
SHA512

891ce2fef9d309cf31a0f6129e14b8cd3c0f2b4df08d538c103ea2bfb89efc8e3e00da41b45c14bf11c4a61a747af1269ba4931d0f282bff90b84376d64a0891
SSDEEP

196608:9DRJcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:ZRODKlFBq7XsBvyCpLGLtw

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  4e7032ec847ba5b730abf6c1abd3c90745e391e955f24539c0d68f2bd6f4d97c
- Size
  
  7.2MB
- MD5
  
  97322f271a3019ebc2aea2770f4eb271
- SHA1
  
  f15a68fa1a9aaab97cd8e565c68a550eef6d9e4a
- SHA256
  
  4e7032ec847ba5b730abf6c1abd3c90745e391e955f24539c0d68f2bd6f4d97c
- SHA512
  
  891ce2fef9d309cf31a0f6129e14b8cd3c0f2b4df08d538c103ea2bfb89efc8e3e00da41b45c14bf11c4a61a747af1269ba4931d0f282bff90b84376d64a0891
- SSDEEP
  
  196608:9DRJcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:ZRODKlFBq7XsBvyCpLGLtw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2