General

  • Target

    2024-11-08_2faf668c37ead3dfd7639cd89454767b_avoslocker_luca-stealer

  • Size

    1.3MB

  • Sample

    241108-rrjzgssray

  • MD5

    2faf668c37ead3dfd7639cd89454767b

  • SHA1

    e33a2f3a2bd63de36b9f6dc838b0c2fb7d9703f3

  • SHA256

    1ff98b60c1cfcd051d2ffd20e717a9f6e04f5a69deb9be632447ab078254bf76

  • SHA512

    3ad843be339a2381667a722e09f9cc91885774867829224866245487f59a78290d686a5b7b009633c8a292794d12fba17c5ec096be2c61d20dd814a00f0f2054

  • SSDEEP

    24576:R2zEYytjjqNSlhvpfQiIhKPtehfQ7r9qySkbgedD8NDFKYmKOF0zr31JwAlcR3Qi:RPtjtQiIhUyQd1SkFdDgDUYmvFur31yH

Malware Config

Targets

    • Target

      2024-11-08_2faf668c37ead3dfd7639cd89454767b_avoslocker_luca-stealer

    • Size

      1.3MB

    • MD5

      2faf668c37ead3dfd7639cd89454767b

    • SHA1

      e33a2f3a2bd63de36b9f6dc838b0c2fb7d9703f3

    • SHA256

      1ff98b60c1cfcd051d2ffd20e717a9f6e04f5a69deb9be632447ab078254bf76

    • SHA512

      3ad843be339a2381667a722e09f9cc91885774867829224866245487f59a78290d686a5b7b009633c8a292794d12fba17c5ec096be2c61d20dd814a00f0f2054

    • SSDEEP

      24576:R2zEYytjjqNSlhvpfQiIhKPtehfQ7r9qySkbgedD8NDFKYmKOF0zr31JwAlcR3Qi:RPtjtQiIhUyQd1SkFdDgDUYmvFur31yH

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks