blacknet | ac7072393954166ba117b8886328c562ea512e3482beabe159e8cd007054f980

Sharing

Copy URL

Twitter E-mail

General

Target

BlackNET3.0.zip
Size

5.2MB
Sample

241012-qp5bzaxcmr
MD5

a7dfb0c455c9705320886b4424420b15
SHA1

028ec593d6f2dedce2c35f21371f07ac3c0493df
SHA256

ac7072393954166ba117b8886328c562ea512e3482beabe159e8cd007054f980
SHA512

001ce1cadf73280f329e127f7508cd0d81e6d2f051250f5294b3bcd8ffed3261baf9be91722878edba5823a417cdde5b31e25f3fad2136fed95e8368f9149978
SSDEEP

98304:cgKWc1y2eFMMkGQ2NbP1vMxHTIZ0aIRHPwyJpj2swtrGQ7gpA/ExP3CazuI0h0zP:HKW6MBNb9vMxHe2vNJBmNgpA/JazO2zP

Score

10^/10

blacknet [id]discovery execution

Malware Config

Extracted

Family

blacknet

Botnet

[ID]

[HOST]

Mutex

[MUTEX]

Attributes

antivm
false
elevate_uac
false
install_name
[Install_Name]
splitter
|BN|
start_name
[StartupName]
startup
false
usb_spread
false

Targets

- Target
  
  BlackNET Panel/asset/index.php
- Size
  
  210B
- MD5
  
  be7cc9ad57c8bf5292c29b6cd2c03d53
- SHA1
  
  fc8ac2ef4cdb933866c7434545e9327e3bcbdd1e
- SHA256
  
  4e5d08687ecdf868c6dbdca3d3d1c55acd1ca0101dfc683bb7891951e72f950a
- SHA512
  
  5a81bcc164b4f077a7edb4f1fc5fc6a14578863110e9b87184bd28cb831b9a47b7eda78b8a8636bb7ec2c50c839dd2feb7847761e88343a3e55ee2b164f003cc
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  BlackNET Panel/asset/js/bootstrap-switch/bootstrap-switch.js
- Size
  
  26KB
- MD5
  
  a467f3dc7c295dd7b92fd3eca5cc3e0f
- SHA1
  
  3882f245345c1fd94d194ba655ecdde576297b66
- SHA256
  
  152ae51aabacb07dd8cf0f0d046a2eb3d1f1c67f11d05c9b1796ae7676ecb96a
- SHA512
  
  685593ab4a7a14377c737e8d841d144b638c797bb1fb40c1b09697ad4cdddfbce1f605c62361d58805c8d5f864f5ad8d4569c1e05b968cba0734268594a6288b
- SSDEEP
  
  192:UbvXHRdkAZp7afy+aOpvMcyCBEPcmC+LHCFBiLb/YB5b8zu51xsam1MYx2duBjIe:UbvjGpMcJYW8/17Xh73jKCYJcBHRmVK9
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  BlackNET Panel/asset/js/bootstrap-switch/highlight.js
- Size
  
  9KB
- MD5
  
  8898321a5de489e856b81c35fa6d9060
- SHA1
  
  ee922ca3839bc977096ec163ec9087fc18203e35
- SHA256
  
  bf669bfbd9e71ef3127c8726ff2222b446dccd193c6f1b5eceeed60b6d8f17ef
- SHA512
  
  61b71cf0dc1db5d16941e95fcb7110a08464b9b6465acf311f3ee48af31cfa973927e591312d85f5d048fcf547c382e459d1e7d0a231e18d3562951323b22d9e
- SSDEEP
  
  192:lq4ZP26FgGNQ/SX2QE7KWtiUwh4LchVr+Gw/63LT94RTYGTNW6H4:lqEO6i/y3WtiTWLgRwUXwW6H4
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  BlackNET Panel/asset/js/bootstrap-switch/main.js
- Size
  
  2KB
- MD5
  
  49f307cac7ce86b1495130a0445aa9fa
- SHA1
  
  72669786f63642cbcb25b7306501939bad192f00
- SHA256
  
  5bd5bac39620c0c22bd70c7531b5cce5d0a8242ef8b3ffabfc9ef4f1d3fc5f0e
- SHA512
  
  07fb28f6fa84ee9df7bd930657a240f1c36e501f4dcb67396687e3459452ba93e564a19b734008d57bcc41d7c1de7b08021cbbe949a87f8aa5632d354a14231b
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  BlackNET Panel/asset/js/datamaps.world.min.js
- Size
  
  109KB
- MD5
  
  7c61f853d3f3c38a20f59d270a1044b6
- SHA1
  
  f232a911d7607c38462e607dde1ad8a7a245999c
- SHA256
  
  c61aaf2131c1b4eccd4b0a99432a6f5bbd040c1f2f1178389712125538d330ae
- SHA512
  
  e25fd6af87d30c7ef43ae306487d901972f2592e34deea45cc565694412e15137acfe43fa0e8b1bdaca8b702bd22a07e6dc22db09a1df1a06007f751e4684507
- SSDEEP
  
  1536:uKzy9JiQX1QGCaoitlPxx5N0T85+eNeFgKGnly0i23u+Dk9JAAwK4EIj7:S9JiyBH75P6w5r8GXTXK4v7
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  BlackNET Panel/asset/js/demo/datatables-demo.js
- Size
  
  217B
- MD5
  
  0dd1fb2187b928471dffdf17db0117e4
- SHA1
  
  2575220106a16f64dbc2665e8b268e41d9825f56
- SHA256
  
  5c8b689f5c18b678e22baec4ce8d57ce84f9ad9270ef866c6e912231a22d5556
- SHA512
  
  f01b24928c2624da1735558689547787612c16e6a4e281f825acd38171ab8557479944541ffa104a1553ac8f63b1ad67c7d2c67541e31aace9b93be9053c85cf
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  BlackNET Panel/asset/js/sb-admin.js
- Size
  
  1KB
- MD5
  
  d30615caff63b00899e6ba6da3674c2b
- SHA1
  
  13c2c6f139b76274bc00c65879eeb8058d2ed863
- SHA256
  
  c78db9f7273fc09e393efd82b2093a018e61c42a613f30d3b5a1df30baa88ad4
- SHA512
  
  cb8587280321cb63472d2c9131dddd0c6d4f896f5f824e24bad72b21cf597ee177787071b76579c9e852ef4a556b1e04eb13a9d859a55c0c4d674b141eb1537a
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  BlackNET Panel/asset/js/sb-admin.min.js
- Size
  
  1KB
- MD5
  
  d30e845478b9c01cf684764b1e0a0117
- SHA1
  
  343fcbb3d0996c74f2aedb55f328ea9c75c4b69b
- SHA256
  
  d9791c22547be892d54da8d7be533863693de3af7b32ee0c4cd2ed95a8aaa944
- SHA512
  
  b0cabb9790f338303b8298b9a835e577e74c7b7810dd46d9f49bc46feb4bdb26b74ba5f111e0b9ad924eb320acf7f87cf48039b57f2d81ed7314bbcd3764cd17
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  BlackNET Panel/asset/vendor/bootstrap/js/bootstrap.bundle.js
- Size
  
  222KB
- MD5
  
  1a94abb2d5270a12fa1ffba3a186737d
- SHA1
  
  7e2803fbfd66ab6b0ce729e13188a5588c7c1c3e
- SHA256
  
  675b7ec3167b121e53d6c2ba69e3d63211103a0851e236552f08f0ad464045e1
- SHA512
  
  13dce4bdf0ab2aca19c594aa2a775cff526434dbc67f9bd23d2e013e75ed4a4a92c827f6ead0fc3aa822290c015d7cdfc1b2043f5a8259e16befcc47ea210b86
- SSDEEP
  
  3072:x2jiz6JsHhcZMJ6XsqoBGa5fHWb0YAgfFaaxBmEqS+ys:xn6JsBUMJ6XvoBGa5fy0YAgf9xBmEqS+
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  BlackNET Panel/asset/vendor/bootstrap/js/bootstrap.bundle.min.js
- Size
  
  78KB
- MD5
  
  a5334e475209f965b4862f3bedf32618
- SHA1
  
  fac45259046dd90b16d251739108002d67a00b54
- SHA256
  
  394156ee114ed3faf968419340ecfd17f69740eb7e4f0a88d59e1f6d5bf0c34e
- SHA512
  
  738c1384f3c2326bb8c6c56e7c91e8928800f57e246b9f1ccbd70461fe6dd78ef04b0d19a38ddfc1d4f2fc80b4935a0bc5771494fbd664c9c3f1b7bad6cc16ee
- SSDEEP
  
  768:u09+zQtNHVGCcWTb7zTuBV4KtkSsMtJQ5C/xd7vPn2JNtFiH5jsHaikKrjRM+PKk:ua+OOkSs2Q5CXnFOpc6RvFvVGGZ5
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  BlackNET Panel/asset/vendor/bootstrap/js/bootstrap.js
- Size
  
  131KB
- MD5
  
  702049b302bef35ba3614119b4c82cce
- SHA1
  
  7e57c5d8200793f87521f179990a91825dd96f24
- SHA256
  
  eba7fab904d092f1c5f23a6788b5898e7b5e11f990682fed01315ec3f9d3040f
- SHA512
  
  cfd484f4a04fad151daaf6ad3150dd4c417848922b2983c0e7f43524181018e7ce7336ed2f01d26c746849c16f7345f30d051d5d1aaef63c0a8b5f6332d0ec43
- SSDEEP
  
  1536:uLMPzgsSDhjiLmkFaqRfb3LK/4QOBCBEqSONhyw:n2jiNFaaxBmEqS+yw
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  BlackNET Panel/asset/vendor/bootstrap/js/bootstrap.min.js
- Size
  
  58KB
- MD5
  
  61f338f870fcd0ff46362ef109d28533
- SHA1
  
  b3c116c65e6f053aaab45e5619a78ec00271a50f
- SHA256
  
  5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548
- SHA512
  
  8c2694d03a7721b303959e9fe9d4844129cead2b2e806e85e988a04569da822ec7a0e2ec845d64c312d3e3ec42651810b1336aa542a3e969963b1b2ef65dd444
- SSDEEP
  
  768:uoYGDyGi43HVzdR2BmDb7zTNilqtvY1xWiDLYjQVW1/MVOlKvnxFa+B0+:uoFXOCx0wNGaYk+
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  BlackNET Panel/asset/vendor/datatables/dataTables.bootstrap4.js
- Size
  
  4KB
- MD5
  
  73bd54551128bcbe4561a101392aa9a0
- SHA1
  
  8b7e63bf08fa825c68094ee5ec1358049429d3ad
- SHA256
  
  eb67b170f504fc63d5572a9d54c58fb7fd92b66d7c74b652a0f187dcf14f649b
- SHA512
  
  3e8f949ce29b0e19cea7eaa369a065dd2e0ebd593374a3f95e90e9fa300d4cbebaebb4a916fd091239cc05553caa329854efef84d663d31bb64e44af3fbad991
- SSDEEP
  
  96:t8XQCMfgzJDMZhapHqGhoIQO2U6cL+mj998jQfiNLUJuVw:t8Ab4JDi0ZEQl+NBKM6
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  BlackNET Panel/asset/vendor/datatables/dataTables.bootstrap4.min.js
- Size
  
  3KB
- MD5
  
  ffefe8e36010fb53f061ec2f8cbbbc2a
- SHA1
  
  2682a9e6cc6491ead91255ca62c6002ecfb4d5f8
- SHA256
  
  03c1d0b27ffdb97b7e55191a2e15ad8fb28c0bc6d84fbeabdc807b893a83b4ba
- SHA512
  
  4fdef4bfecef219bb752e82b4a9468c98b742b45649d30e0d86d3f847ed999e3633007f299246863e09a8f17a923493a54c1415f182c0619385b6afb34583a6a
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  BlackNET Panel/asset/vendor/datatables/jquery.dataTables.js
- Size
  
  438KB
- MD5
  
  84c78452a380a74e6dc98cbc5677d601
- SHA1
  
  e6c4d77674a68b678de5970018df147d693c83da
- SHA256
  
  44e12c5565f3704495a043a6aeb56d128522adca7cf67a53e40de48777e9ca52
- SHA512
  
  5f85b3fea069952331150e7216fc4918ac7de566b3dbed70afb3b0df4fdd6f6a49cacc75f817166f7b75014b35e3824f15df7a1c3cc36f265a1bf273ed87ac46
- SSDEEP
  
  6144:5C/4gKEH74Zs2Jl11LHWlSmVDRiCa0amBUWjWLtWZZYNc:I/4gjHRM9ilSmHAWjKCmNc
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  BlackNET Panel/asset/vendor/datatables/jquery.dataTables.min.js
- Size
  
  82KB
- MD5
  
  64cd39014cddcb7305b2422bd1356db8
- SHA1
  
  608cb2069d3ff41f03d5d1e883625a2b30f3b532
- SHA256
  
  2f871fee6fdc802e757bb0453f141c299717af2cd28eeed56012892ce28f1ef4
- SHA512
  
  857eab806a975fa02387a63e6d9f8fff46645019777d0318e88d41e758793433aeed713595581d7f656aca08e8ccb5fc02e7c7bd60333ae0b459531be30257e3
- SSDEEP
  
  1536:ePFoMpN8Q00R9aPZxJrtGPld60RM3PvatwQkxxgiEaCohcoKymy6yWQyPUB:GGNQ00R9ouq/vatB1oKj5m
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32