blackmoon | 210927ca989ea663b6f371bdba164f268216b47322e0c30175af361468e5151a | Triage

Sharing

General

Target

210927ca989ea663b6f371bdba164f268216b47322e0c30175af361468e5151a
Size

7.2MB
Sample

240528-xl5a5aga8v
MD5

4162e612cc93fca908eee344cfde5f47
SHA1

895517395a882c0af8cfea9b012a3213d512a480
SHA256

210927ca989ea663b6f371bdba164f268216b47322e0c30175af361468e5151a
SHA512

47e28960d27ff7972d78d0d9e0aba986db6504ddbe1851355ede4048d25b0101a4f35c02eea66e062cd9e639b89497077d529fad3fff595d343e27e7ea8bc0b0
SSDEEP

196608:9DBJcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:ZBODKlFBq7XsBvyCpLGLtw

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  210927ca989ea663b6f371bdba164f268216b47322e0c30175af361468e5151a
- Size
  
  7.2MB
- MD5
  
  4162e612cc93fca908eee344cfde5f47
- SHA1
  
  895517395a882c0af8cfea9b012a3213d512a480
- SHA256
  
  210927ca989ea663b6f371bdba164f268216b47322e0c30175af361468e5151a
- SHA512
  
  47e28960d27ff7972d78d0d9e0aba986db6504ddbe1851355ede4048d25b0101a4f35c02eea66e062cd9e639b89497077d529fad3fff595d343e27e7ea8bc0b0
- SSDEEP
  
  196608:9DBJcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:ZBODKlFBq7XsBvyCpLGLtw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2