blacknet | f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3

Analysis

max time kernel
120s
max time network
106s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
20-10-2024 15:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
Size

83KB
MD5

e3208261798cd4636f47ffcedd0175a0
SHA1

37034e110ab5ac99bee7da1a5ca56ba2b9af8019
SHA256

f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3
SHA512

8e2e05afdcd5e74afb5ee5ea5c30bdbd760ef0092e21a91d8f7669b702225579f0cff11dda8464744502fc3903efa634fa0e08e42d21bc8cbe8a25c8ab981abc
SSDEEP

1536:PwPvK/3zvzVohd9BRiF/JU3jzJxuOmb54vHTLazm7/:PwiGDjiVOzVmb5uHvmm7/

Score

10^/10

blacknet trojan

Malware Config

Signatures

BlackNET
BlackNET is an open source remote access tool written in VB.NET.
trojan blacknet

Suspicious behavior: EnumeratesProcesses 64 IoCs

Processes:

f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe

pid	Process
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes:

f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe

description	pid	Process
Token: SeDebugPrivilege	5096	f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe

C:\Users\Admin\AppData\Local\Temp\f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe
"C:\Users\Admin\AppData\Local\Temp\f67aa023093dcbfde0728ba026cb3b677768827fab4cb2846679b676ea1ad0a3N.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:5096

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/5096-0-0x00007FFE30C45000-0x00007FFE30C46000-memory.dmp

Filesize
4KB

Download
memory/5096-1-0x000000001C030000-0x000000001C0D6000-memory.dmp

Filesize
664KB

Download
memory/5096-2-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-3-0x000000001C5B0000-0x000000001CA7E000-memory.dmp

Filesize
4.8MB

Download
memory/5096-4-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-5-0x000000001CB20000-0x000000001CBBC000-memory.dmp

Filesize
624KB

Download
memory/5096-6-0x00000000019B0000-0x00000000019B8000-memory.dmp

Filesize
32KB

Download
memory/5096-7-0x000000001CCC0000-0x000000001CD0C000-memory.dmp

Filesize
304KB

Download
memory/5096-8-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-9-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-10-0x000000001D920000-0x000000001D982000-memory.dmp

Filesize
392KB

Download
memory/5096-11-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-13-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-12-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-14-0x00007FFE30C45000-0x00007FFE30C46000-memory.dmp

Filesize
4KB

Download
memory/5096-15-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-16-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-17-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-18-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-19-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-20-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-21-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-22-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-23-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-24-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-25-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-26-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-27-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-28-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-29-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-30-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-31-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-32-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-33-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-34-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-35-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-36-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-37-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-38-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-39-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-40-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-41-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-42-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-43-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-44-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-45-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-46-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-47-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-48-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-49-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-50-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-51-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-52-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-53-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-54-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-55-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-56-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-57-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-58-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-59-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-60-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-61-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-62-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-63-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-64-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-65-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-66-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-67-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-68-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-69-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-70-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-71-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-72-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-73-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-74-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-75-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-76-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-77-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-78-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-79-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-80-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-81-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-82-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-83-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-84-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-85-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-87-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-86-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-88-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-89-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-90-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-91-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-92-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-93-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-94-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download
memory/5096-95-0x00007FFE30990000-0x00007FFE31331000-memory.dmp

Filesize
9.6MB

Download