General

  • Target

    2025-07-03_b3ad62f0cfe13275c3ba8d81bc7f7d4c_amadey_black-basta_darkgate_elex_hijackloader_luca-stealer

  • Size

    11.3MB

  • Sample

    250703-gpmx9afm5s

  • MD5

    b3ad62f0cfe13275c3ba8d81bc7f7d4c

  • SHA1

    4b966a7807ace23cb22cfe59fec61c5b414a1284

  • SHA256

    49b798985eee4e99a03b9389b8a78460148c1a04679726ef7d292cd31947c965

  • SHA512

    872f0005a0b36c3dea8e488b89a68c8a93be2a97896fb16734d001d9cb3910e0a3eba54d178eac53f9b2cb52d0bfe9edd0ce2199cf511650b97a69ee1ee40708

  • SSDEEP

    196608:oiENKhpjM+VjAOAoeZAGbNdpF7B3eNzFf4KpGMG/9vR6POA93K8nICYHwrFIvTgd:oiENKhpt6OneZAGbNdpVB3eNzFf4KpGl

Malware Config

Targets

    • Target

      2025-07-03_b3ad62f0cfe13275c3ba8d81bc7f7d4c_amadey_black-basta_darkgate_elex_hijackloader_luca-stealer

    • Size

      11.3MB

    • MD5

      b3ad62f0cfe13275c3ba8d81bc7f7d4c

    • SHA1

      4b966a7807ace23cb22cfe59fec61c5b414a1284

    • SHA256

      49b798985eee4e99a03b9389b8a78460148c1a04679726ef7d292cd31947c965

    • SHA512

      872f0005a0b36c3dea8e488b89a68c8a93be2a97896fb16734d001d9cb3910e0a3eba54d178eac53f9b2cb52d0bfe9edd0ce2199cf511650b97a69ee1ee40708

    • SSDEEP

      196608:oiENKhpjM+VjAOAoeZAGbNdpF7B3eNzFf4KpGMG/9vR6POA93K8nICYHwrFIvTgd:oiENKhpt6OneZAGbNdpVB3eNzFf4KpGl

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks