General

  • Target

    2025-01-19_03eb9261bf6a715bcaadaecb0ca8d422_avoslocker_luca-stealer

  • Size

    1.7MB

  • Sample

    250119-yhcmdaspfz

  • MD5

    03eb9261bf6a715bcaadaecb0ca8d422

  • SHA1

    dbed4579d23050935f9144f17d90478e55bca76b

  • SHA256

    326b7306caf8f9037777323b99f7028eb623ce11c1b9aaead5ca7fa637642b20

  • SHA512

    1428b3b340c52f17afad9893958640b5260d9cb60008b8c19a01cbf420c3bebaa6305dd9eeba0b45d5f8327852584df7fc9affc95f32e50f74979e4d78bb481c

  • SSDEEP

    24576:XoMOW0n7Ubxk/uRv5qLGJLQ4a56duA/85RkV4l7/ZUsqjnhMgeiCl7G0nehbGZpv:e4i0wGJra0uAUfkVy7/ZwDmg27RnWGj

Malware Config

Targets

    • Target

      2025-01-19_03eb9261bf6a715bcaadaecb0ca8d422_avoslocker_luca-stealer

    • Size

      1.7MB

    • MD5

      03eb9261bf6a715bcaadaecb0ca8d422

    • SHA1

      dbed4579d23050935f9144f17d90478e55bca76b

    • SHA256

      326b7306caf8f9037777323b99f7028eb623ce11c1b9aaead5ca7fa637642b20

    • SHA512

      1428b3b340c52f17afad9893958640b5260d9cb60008b8c19a01cbf420c3bebaa6305dd9eeba0b45d5f8327852584df7fc9affc95f32e50f74979e4d78bb481c

    • SSDEEP

      24576:XoMOW0n7Ubxk/uRv5qLGJLQ4a56duA/85RkV4l7/ZUsqjnhMgeiCl7G0nehbGZpv:e4i0wGJra0uAUfkVy7/ZwDmg27RnWGj

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks