General

  • Target

    3f8689cf9fe4de2059aee85be894a913d56bf60ad2c8fe6f1199e41d291c61c4

  • Size

    193KB

  • Sample

    220502-3bbtqaeedn

  • MD5

    74d7838e4be38eb77cba0125fa29e2c6

  • SHA1

    d40883ca2b499d0c6a984d94d8810adadf3d1a09

  • SHA256

    3f8689cf9fe4de2059aee85be894a913d56bf60ad2c8fe6f1199e41d291c61c4

  • SHA512

    97ae77f94196efcd15098c60c1cc83343ec3f01e4cba8ff5386fab7e68a14b6a201db19b23630e6b5acbc6d655b99ebbd02eb8259e736b80f30ea769bfb999bf

Malware Config

Targets

    • Target

      3f8689cf9fe4de2059aee85be894a913d56bf60ad2c8fe6f1199e41d291c61c4

    • Size

      193KB

    • MD5

      74d7838e4be38eb77cba0125fa29e2c6

    • SHA1

      d40883ca2b499d0c6a984d94d8810adadf3d1a09

    • SHA256

      3f8689cf9fe4de2059aee85be894a913d56bf60ad2c8fe6f1199e41d291c61c4

    • SHA512

      97ae77f94196efcd15098c60c1cc83343ec3f01e4cba8ff5386fab7e68a14b6a201db19b23630e6b5acbc6d655b99ebbd02eb8259e736b80f30ea769bfb999bf

    • Arcane log file

      Detects a log file produced by the Arcane Stealer.

    • ArcaneStealer

      Arcane Stealer is a .Net information-stealing malware that is easy to acquire in the dark web.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v6

Tasks