blacknet | f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2

Analysis

max time kernel
150s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
21-10-2024 02:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
Size

83KB
MD5

52112875b318c3e0e5dad58b4850b050
SHA1

bd1915b69f04a809532c07fafab1282694007b74
SHA256

f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2
SHA512

1a06809774649765a3d260fd637e2bfd2593fe543d045dc99cc811999510462a7f0f4d7535a7d32d64904a10639392e84ae491b97d10b7d5e4cc73feb5065189
SSDEEP

1536:PwPvK/3zvzVohd9BRiF/JUrjzJxuOmb54vHTLazm7/:PwiGDjiVyzVmb5uHvmm7/

Score

10^/10

blacknet trojan

Malware Config

Signatures

BlackNET
BlackNET is an open source remote access tool written in VB.NET.
trojan blacknet

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	4964	f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe

C:\Users\Admin\AppData\Local\Temp\f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe
"C:\Users\Admin\AppData\Local\Temp\f2d3b90c0c8fe25b3a9e07fb02be44370482ba2029d6192b71d97101afab21b2N.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:4964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4964-0-0x00007FFBBA245000-0x00007FFBBA246000-memory.dmp

Filesize
4KB

Download
memory/4964-1-0x000000001B490000-0x000000001B536000-memory.dmp

Filesize
664KB

Download
memory/4964-2-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-3-0x000000001BA70000-0x000000001BF3E000-memory.dmp

Filesize
4.8MB

Download
memory/4964-4-0x000000001C020000-0x000000001C0BC000-memory.dmp

Filesize
624KB

Download
memory/4964-5-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-6-0x0000000000EB0000-0x0000000000EB8000-memory.dmp

Filesize
32KB

Download
memory/4964-7-0x000000001C180000-0x000000001C1CC000-memory.dmp

Filesize
304KB

Download
memory/4964-8-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-9-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-10-0x000000001D140000-0x000000001D1A2000-memory.dmp

Filesize
392KB

Download
memory/4964-11-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-12-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-13-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-14-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-15-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-16-0x00007FFBBA245000-0x00007FFBBA246000-memory.dmp

Filesize
4KB

Download
memory/4964-17-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-18-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-19-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-20-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-21-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-22-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-23-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-24-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-25-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-26-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-27-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-28-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-29-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-30-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-31-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-32-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-34-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-33-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-35-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-36-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-37-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-38-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-39-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-40-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-41-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-42-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-43-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-44-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-45-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-46-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-47-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-48-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-49-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-50-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-51-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-53-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-52-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-54-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-55-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-56-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-57-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-58-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-59-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-60-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-62-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-61-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-63-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-64-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-65-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-66-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-67-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-68-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-69-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-70-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-71-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-72-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-73-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-74-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-75-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-76-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-77-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-78-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-79-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-80-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-82-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-81-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-83-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-84-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-85-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-86-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-87-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-88-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-89-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-90-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-91-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-92-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-93-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-94-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download
memory/4964-95-0x00007FFBB9F90000-0x00007FFBBA931000-memory.dmp

Filesize
9.6MB

Download