General

  • Target

    36a5db95a38588f7c3bd2c5b8a657220106cff580c36ffa333586b606c69d982

  • Size

    185KB

  • Sample

    220521-aey47sabc9

  • MD5

    eb4fed1af336a3bb6c8886d4bb10e03a

  • SHA1

    f6919fb538c27d5f0df4938f83d7b889c7095913

  • SHA256

    36a5db95a38588f7c3bd2c5b8a657220106cff580c36ffa333586b606c69d982

  • SHA512

    e6675054860e4a98486dbd90a75c2c52097773a8f4f30a041c6720053303306bd436665d2c5b35fd4bfd34e8fb87890e53540d0d02ea3510399cdf33691872ff

Malware Config

Targets

    • Target

      36a5db95a38588f7c3bd2c5b8a657220106cff580c36ffa333586b606c69d982

    • Size

      185KB

    • MD5

      eb4fed1af336a3bb6c8886d4bb10e03a

    • SHA1

      f6919fb538c27d5f0df4938f83d7b889c7095913

    • SHA256

      36a5db95a38588f7c3bd2c5b8a657220106cff580c36ffa333586b606c69d982

    • SHA512

      e6675054860e4a98486dbd90a75c2c52097773a8f4f30a041c6720053303306bd436665d2c5b35fd4bfd34e8fb87890e53540d0d02ea3510399cdf33691872ff

    • Arcane log file

      Detects a log file produced by the Arcane Stealer.

    • ArcaneStealer

      Arcane Stealer is a .Net information-stealing malware that is easy to acquire in the dark web.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v6

Tasks