Analysis
-
max time kernel
105s -
max time network
147s -
platform
windows10-2004_x64 -
resource
win10v2004-20250610-en -
resource tags
arch:x64arch:x86image:win10v2004-20250610-enlocale:en-usos:windows10-2004-x64system -
submitted
02/07/2025, 18:51
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2025-07-02_c27033c5df76ee23b590f11d8086d9c1_black-basta_cobalt-strike_luca-stealer_satacom_vidar.exe
Resource
win10v2004-20250610-en
1 signatures
150 seconds
General
-
Target
2025-07-02_c27033c5df76ee23b590f11d8086d9c1_black-basta_cobalt-strike_luca-stealer_satacom_vidar.exe
-
Size
589KB
-
MD5
c27033c5df76ee23b590f11d8086d9c1
-
SHA1
8d8652d9eba7517fc4dbd4dfbfc74dd311e2e659
-
SHA256
40b9955aa010d0a7d3dcbc507055861a58aa6dbbb750cb7f64e55b504f86b4c9
-
SHA512
8d38a21d22117773d9f4446489fa94f56fe5036bb85371472438d82dbee19a08bb2acb87fe77a70f9016c4b89249d742a643b1c9020d8fc60f85692de017e0c2
-
SSDEEP
12288:Bgdv/TvxJFYvEjjuEuypRVTpfa3HJPSk+JxFPfN7lK:gvxJLjjZ3pR5pfa3HJPZ+Jto
Score
1/10
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 3532 2025-07-02_c27033c5df76ee23b590f11d8086d9c1_black-basta_cobalt-strike_luca-stealer_satacom_vidar.exe 3532 2025-07-02_c27033c5df76ee23b590f11d8086d9c1_black-basta_cobalt-strike_luca-stealer_satacom_vidar.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\2025-07-02_c27033c5df76ee23b590f11d8086d9c1_black-basta_cobalt-strike_luca-stealer_satacom_vidar.exe"C:\Users\Admin\AppData\Local\Temp\2025-07-02_c27033c5df76ee23b590f11d8086d9c1_black-basta_cobalt-strike_luca-stealer_satacom_vidar.exe"1⤵
- Suspicious use of SetWindowsHookEx
PID:3532