General

  • Target

    2025-07-03_b03bd3bde92503e0a33ccd57868ca428_amadey_black-basta_elex_luca-stealer_swisyn

  • Size

    6.3MB

  • Sample

    250703-gpd1cat1bx

  • MD5

    b03bd3bde92503e0a33ccd57868ca428

  • SHA1

    6a40b34ef814b3411e894b14ba5692ef7df1a495

  • SHA256

    e8b09d566c1a748f1f237486f0df700cba8db56572aca6914eeabc72e668f66f

  • SHA512

    378362e35334c0e1ab27b469c33e76d2c38b9db19bbdc46cd3f9ca729bdbeda2e2a94c6f1c87e14211f4f14899ac65299132b5a28b9eebfd4a666eade69323b1

  • SSDEEP

    98304:UqbqiPkQpnNQP244/kxMX0Mz2W/TU4POqIFK81slGHbCKR0xNpEjm36PfXoqxVpu:x7lNQP24Ik+28I4GA81G+LO+a38rw

Malware Config

Targets

    • Target

      2025-07-03_b03bd3bde92503e0a33ccd57868ca428_amadey_black-basta_elex_luca-stealer_swisyn

    • Size

      6.3MB

    • MD5

      b03bd3bde92503e0a33ccd57868ca428

    • SHA1

      6a40b34ef814b3411e894b14ba5692ef7df1a495

    • SHA256

      e8b09d566c1a748f1f237486f0df700cba8db56572aca6914eeabc72e668f66f

    • SHA512

      378362e35334c0e1ab27b469c33e76d2c38b9db19bbdc46cd3f9ca729bdbeda2e2a94c6f1c87e14211f4f14899ac65299132b5a28b9eebfd4a666eade69323b1

    • SSDEEP

      98304:UqbqiPkQpnNQP244/kxMX0Mz2W/TU4POqIFK81slGHbCKR0xNpEjm36PfXoqxVpu:x7lNQP24Ik+28I4GA81G+LO+a38rw

    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v16

Tasks