General

  • Target

    2025-07-01_68c322791faf5b252d61debf2ceaa4d7_amadey_black-basta_cobalt-strike_darkgate_elex_luca-stealer_rhadamanthys_smo

  • Size

    871KB

  • Sample

    250701-jz262adq4z

  • MD5

    68c322791faf5b252d61debf2ceaa4d7

  • SHA1

    03dac9e8ac8b763f65630395d3c15a0d3f87b2a8

  • SHA256

    f7ffa5cb6d1fd77b328b881a6a8802c2e40789826136bce1aa56d280aac99a99

  • SHA512

    60f8569768e056ed6d672cc3739fec926e666358f7a64196a9f8ed1f7bcbcddae0ebf022ccc7c126ae796c91ecf8d519ba9fd741539cef95751cfed105599410

  • SSDEEP

    24576:G2zEYytjjqNSlhvpfQiIhKPtehfQwr9qySkbgedv:GPtjtQiIhUyQy1SkFdv

Malware Config

Targets

    • Target

      2025-07-01_68c322791faf5b252d61debf2ceaa4d7_amadey_black-basta_cobalt-strike_darkgate_elex_luca-stealer_rhadamanthys_smo

    • Size

      871KB

    • MD5

      68c322791faf5b252d61debf2ceaa4d7

    • SHA1

      03dac9e8ac8b763f65630395d3c15a0d3f87b2a8

    • SHA256

      f7ffa5cb6d1fd77b328b881a6a8802c2e40789826136bce1aa56d280aac99a99

    • SHA512

      60f8569768e056ed6d672cc3739fec926e666358f7a64196a9f8ed1f7bcbcddae0ebf022ccc7c126ae796c91ecf8d519ba9fd741539cef95751cfed105599410

    • SSDEEP

      24576:G2zEYytjjqNSlhvpfQiIhKPtehfQwr9qySkbgedv:GPtjtQiIhUyQy1SkFdv

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks