aurora | 8d33bf0457b03af2b8bb1f6c0d6df91ced56a79438816c32e8da4eb7f1c6ade0 | Triage

Sharing

General

Target

2025-02-16_b1108d1cfa77cbfd7c1cc053d94c4a17_frostygoop_luca-stealer_poet-rat_snatch
Size

12.5MB
Sample

250216-26nlbssldw
MD5

b1108d1cfa77cbfd7c1cc053d94c4a17
SHA1

189c8681acd24b0ef7697038cb9f3182abaa6504
SHA256

8d33bf0457b03af2b8bb1f6c0d6df91ced56a79438816c32e8da4eb7f1c6ade0
SHA512

7af1288321f813a89915ad15c8b0eddc171774be1d597e00339d144cc08de0b4e6205cec61c6a3ba561156ccca787a2887b0dffb5a401a7d43c4bc9b5540e6a1
SSDEEP

49152:Gg9f2N48AV8Zjjg5UhmEgBRu66v/G1SLmaB5Ei7ptGH5RHVf010yv:N2OV8bgBRjgEkGZRHs

Score

10^/10

aurora discovery

Malware Config

Targets

- Target
  
  2025-02-16_b1108d1cfa77cbfd7c1cc053d94c4a17_frostygoop_luca-stealer_poet-rat_snatch
- Size
  
  12.5MB
- MD5
  
  b1108d1cfa77cbfd7c1cc053d94c4a17
- SHA1
  
  189c8681acd24b0ef7697038cb9f3182abaa6504
- SHA256
  
  8d33bf0457b03af2b8bb1f6c0d6df91ced56a79438816c32e8da4eb7f1c6ade0
- SHA512
  
  7af1288321f813a89915ad15c8b0eddc171774be1d597e00339d144cc08de0b4e6205cec61c6a3ba561156ccca787a2887b0dffb5a401a7d43c4bc9b5540e6a1
- SSDEEP
  
  49152:Gg9f2N48AV8Zjjg5UhmEgBRu66v/G1SLmaB5Ei7ptGH5RHVf010yv:N2OV8bgBRjgEkGZRHs
Score

8^/10

discovery
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2