blackmoon | 3b70561bf20f9813d71ddcb87806547dce62fbcd915c32823bbd759cd8973087 | Triage

Sharing

General

Target

3b70561bf20f9813d71ddcb87806547dce62fbcd915c32823bbd759cd8973087
Size

111KB
Sample

240909-xmsnqawerb
MD5

40442b031e430be057508b793389e1a7
SHA1

43740e473e9303b8136239dd02b50aaac210a325
SHA256

3b70561bf20f9813d71ddcb87806547dce62fbcd915c32823bbd759cd8973087
SHA512

34581b979b810766703a3390cd5a16917a889a5bd5e83256d7b7dc653099dd9eb5ca766ce9181072021a2f04747905c30b124543a71557ca77ba21dc1132d321
SSDEEP

1536:g8Wcz8n9I2Z+TzrG277WiUeZQWKTccvo4wqtVq:gUII2AWW14wqt

Score

10^/10

blackmoon discovery

Malware Config

Targets

- Target
  
  3b70561bf20f9813d71ddcb87806547dce62fbcd915c32823bbd759cd8973087
- Size
  
  111KB
- MD5
  
  40442b031e430be057508b793389e1a7
- SHA1
  
  43740e473e9303b8136239dd02b50aaac210a325
- SHA256
  
  3b70561bf20f9813d71ddcb87806547dce62fbcd915c32823bbd759cd8973087
- SHA512
  
  34581b979b810766703a3390cd5a16917a889a5bd5e83256d7b7dc653099dd9eb5ca766ce9181072021a2f04747905c30b124543a71557ca77ba21dc1132d321
- SSDEEP
  
  1536:g8Wcz8n9I2Z+TzrG277WiUeZQWKTccvo4wqtVq:gUII2AWW14wqt
Score

8^/10

discovery
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2