Overview

overview

10

Static

static

10

a5ef342482...41.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a5ef342482499489ef303c5f95a9684bff503a9c7c44b16572a4c7ebe60f1141

  • Size

    393KB

  • Sample

    240617-t85nmawclg

  • MD5

    2b22bd7790dfd1f241a512918e814133

  • SHA1

    bcdb2f6cab3c32d0382dd8d09ee7ab8ce9ea037b

  • SHA256

    a5ef342482499489ef303c5f95a9684bff503a9c7c44b16572a4c7ebe60f1141

  • SHA512

    38e64215b9561267322e2724d0e1d994015f88c2b3b2e7fbe3fafc77cbfd92f17ef3fb994e8a8f1e3a020972241ceaf5f77a7888de1a81e019722566c9005184

  • SSDEEP

    6144:p/SZwCDkBDKpVtXIoEpGy8Un02o/7U9398hBg9w5Jq/lJwam9erm7Tu1E:pDCYBDKb2Gy8Un02oTURSY06w1AT

Score
10/10
blackguardspywarestealer

Malware Config

Targets

    • Target

      a5ef342482499489ef303c5f95a9684bff503a9c7c44b16572a4c7ebe60f1141

    • Size

      393KB

    • MD5

      2b22bd7790dfd1f241a512918e814133

    • SHA1

      bcdb2f6cab3c32d0382dd8d09ee7ab8ce9ea037b

    • SHA256

      a5ef342482499489ef303c5f95a9684bff503a9c7c44b16572a4c7ebe60f1141

    • SHA512

      38e64215b9561267322e2724d0e1d994015f88c2b3b2e7fbe3fafc77cbfd92f17ef3fb994e8a8f1e3a020972241ceaf5f77a7888de1a81e019722566c9005184

    • SSDEEP

      6144:p/SZwCDkBDKpVtXIoEpGy8Un02o/7U9398hBg9w5Jq/lJwam9erm7Tu1E:pDCYBDKb2Gy8Un02oTURSY06w1AT

    Score
    10/10
    blackguardspywarestealer

    • BlackGuard

      Infostealer first seen in Late 2021.

      stealerblackguard

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks