General

  • Target

    74ef4be34ec90cc2f6b4635d8c9f7dd5a8313591bacfd3ca64ffb77bb90a39c3

  • Size

    195KB

  • Sample

    220520-wqklvaeebp

  • MD5

    9a5ecc8c3e8d907b509737dfaa7399f6

  • SHA1

    668a46e912e24be6ab57a7ccef6ff3629969a40f

  • SHA256

    74ef4be34ec90cc2f6b4635d8c9f7dd5a8313591bacfd3ca64ffb77bb90a39c3

  • SHA512

    be52f7766abc91bc917ec084be7bea2bf8359c86b6aadfbedaee85fc853a73344c7a34a20604b2b84ddfa848410385e688133fce21c2f200a17d56b55b003236

Malware Config

Targets

    • Target

      74ef4be34ec90cc2f6b4635d8c9f7dd5a8313591bacfd3ca64ffb77bb90a39c3

    • Size

      195KB

    • MD5

      9a5ecc8c3e8d907b509737dfaa7399f6

    • SHA1

      668a46e912e24be6ab57a7ccef6ff3629969a40f

    • SHA256

      74ef4be34ec90cc2f6b4635d8c9f7dd5a8313591bacfd3ca64ffb77bb90a39c3

    • SHA512

      be52f7766abc91bc917ec084be7bea2bf8359c86b6aadfbedaee85fc853a73344c7a34a20604b2b84ddfa848410385e688133fce21c2f200a17d56b55b003236

    • Arcane log file

      Detects a log file produced by the Arcane Stealer.

    • ArcaneStealer

      Arcane Stealer is a .Net information-stealing malware that is easy to acquire in the dark web.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks