General

  • Target

    20eb067ec0441db74cc7d6d29c3ca3963a4e38d20799576d132f9aaca790fc97

  • Size

    186KB

  • Sample

    220307-nkb4hsdhc6

  • MD5

    5077066d5056273343c00556406d2c07

  • SHA1

    91de8eadf958bb1958ffd59d2f63d16f3fadf9bb

  • SHA256

    20eb067ec0441db74cc7d6d29c3ca3963a4e38d20799576d132f9aaca790fc97

  • SHA512

    3d1d20e1fb488567aa8a186dd0d54489505fcf43f74acb95f0fbf1df34fb6452f1768b3c8780f2638f8d02b22849e2047757f53ee2e62b38db19612b58483f1b

Malware Config

Targets

    • Target

      20eb067ec0441db74cc7d6d29c3ca3963a4e38d20799576d132f9aaca790fc97

    • Size

      186KB

    • MD5

      5077066d5056273343c00556406d2c07

    • SHA1

      91de8eadf958bb1958ffd59d2f63d16f3fadf9bb

    • SHA256

      20eb067ec0441db74cc7d6d29c3ca3963a4e38d20799576d132f9aaca790fc97

    • SHA512

      3d1d20e1fb488567aa8a186dd0d54489505fcf43f74acb95f0fbf1df34fb6452f1768b3c8780f2638f8d02b22849e2047757f53ee2e62b38db19612b58483f1b

    • Arcane log file

      Detects a log file produced by the Arcane Stealer.

    • ArcaneStealer

      Arcane Stealer is a .Net information-stealing malware that is easy to acquire in the dark web.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v6

Tasks