General

  • Target

    2024-11-14_993eebdca069127a81a352ffaab3c00b_frostygoop_luca-stealer_poet-rat_snatch

  • Size

    8.5MB

  • Sample

    241114-ycxqcssdja

  • MD5

    993eebdca069127a81a352ffaab3c00b

  • SHA1

    430353db232ed46e32328c49817901164eeb364f

  • SHA256

    0fab072f3e3dcc81c651939cfe9267e0cf18b13fbb41068beeae92f2bc371417

  • SHA512

    64e58eb474bd22d51f2e528ce5fcbd2736b5de00cbea7c90133338f15024c12b2a6f0d48d945e0f06525df3fc0f98a7eeb0a917c9d40347675ba6e6fb16e13ab

  • SSDEEP

    98304:nSLb0Gr+t2z3jvi2SwjE1DKVIOugLED5ACOREG81Ql4e5r6f06uQ3GE:SsT2zzq9D1o7ED59OREG81y54dtj

Malware Config

Targets

    • Target

      2024-11-14_993eebdca069127a81a352ffaab3c00b_frostygoop_luca-stealer_poet-rat_snatch

    • Size

      8.5MB

    • MD5

      993eebdca069127a81a352ffaab3c00b

    • SHA1

      430353db232ed46e32328c49817901164eeb364f

    • SHA256

      0fab072f3e3dcc81c651939cfe9267e0cf18b13fbb41068beeae92f2bc371417

    • SHA512

      64e58eb474bd22d51f2e528ce5fcbd2736b5de00cbea7c90133338f15024c12b2a6f0d48d945e0f06525df3fc0f98a7eeb0a917c9d40347675ba6e6fb16e13ab

    • SSDEEP

      98304:nSLb0Gr+t2z3jvi2SwjE1DKVIOugLED5ACOREG81Ql4e5r6f06uQ3GE:SsT2zzq9D1o7ED59OREG81y54dtj

    • Uses browser remote debugging

      Can be used control the browser and steal sensitive information such as credentials and session cookies.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks