General

  • Target

    2024-11-14_311ad02181b35d209600e2d9a4ec8d0c_frostygoop_luca-stealer_poet-rat_snatch

  • Size

    8.5MB

  • Sample

    241114-x79gzawjak

  • MD5

    311ad02181b35d209600e2d9a4ec8d0c

  • SHA1

    df7292347df369e5ea3cb587d8d247c0b50815e5

  • SHA256

    7019ffe78b1c3ef765f53772f775784729676a6ce9c7579ed1846daeb2a86958

  • SHA512

    a8de1b9ee4b0fea9b12c5afbc8839721a53086c2eb35d5226c0300631059d5e29236602a158695ef1aa999743732383e1185dab1bd389d0f65741b15ff25ce82

  • SSDEEP

    98304:nSLb0Gr+t2z3jvi2SwjE1DKVIOugLED5ACOREG81Ql4e5r6f06uQ3G2:SsT2zzq9D1o7ED59OREG81y54dtl

Malware Config

Targets

    • Target

      2024-11-14_311ad02181b35d209600e2d9a4ec8d0c_frostygoop_luca-stealer_poet-rat_snatch

    • Size

      8.5MB

    • MD5

      311ad02181b35d209600e2d9a4ec8d0c

    • SHA1

      df7292347df369e5ea3cb587d8d247c0b50815e5

    • SHA256

      7019ffe78b1c3ef765f53772f775784729676a6ce9c7579ed1846daeb2a86958

    • SHA512

      a8de1b9ee4b0fea9b12c5afbc8839721a53086c2eb35d5226c0300631059d5e29236602a158695ef1aa999743732383e1185dab1bd389d0f65741b15ff25ce82

    • SSDEEP

      98304:nSLb0Gr+t2z3jvi2SwjE1DKVIOugLED5ACOREG81Ql4e5r6f06uQ3G2:SsT2zzq9D1o7ED59OREG81y54dtl

    • Uses browser remote debugging

      Can be used control the browser and steal sensitive information such as credentials and session cookies.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks