blackmoon | 3b71ca5e61b4155739f4fd38ed9396e702f517cf84b2da3bdcf3e332305b945b | Triage

Sharing

General

Target

3b71ca5e61b4155739f4fd38ed9396e702f517cf84b2da3bdcf3e332305b945b
Size

7.2MB
Sample

240614-283g9stfmr
MD5

26b7329f60dd60abc3fb92e84d2d86a3
SHA1

041728633e15e4f72d4ca326bd23d7d67893a990
SHA256

3b71ca5e61b4155739f4fd38ed9396e702f517cf84b2da3bdcf3e332305b945b
SHA512

5135ba0415f8269911dc09c4b16269c2373089cd86fbe53282da6583e94446c60f67db72f64e6aa994930ea33acfcb701008b7ddd07b8ac5da12cc2cb282b64f
SSDEEP

196608:9D6JcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:Z6ODKlFBq7XsBvyCpLGLtw

Score

10^/10

blackmoon spyware stealer

Malware Config

Targets

- Target
  
  3b71ca5e61b4155739f4fd38ed9396e702f517cf84b2da3bdcf3e332305b945b
- Size
  
  7.2MB
- MD5
  
  26b7329f60dd60abc3fb92e84d2d86a3
- SHA1
  
  041728633e15e4f72d4ca326bd23d7d67893a990
- SHA256
  
  3b71ca5e61b4155739f4fd38ed9396e702f517cf84b2da3bdcf3e332305b945b
- SHA512
  
  5135ba0415f8269911dc09c4b16269c2373089cd86fbe53282da6583e94446c60f67db72f64e6aa994930ea33acfcb701008b7ddd07b8ac5da12cc2cb282b64f
- SSDEEP
  
  196608:9D6JcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:Z6ODKlFBq7XsBvyCpLGLtw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2