General

  • Target

    2025-07-04_87f14f8b32068b41f40bdcb9dd3f4740_black-basta_cobalt-strike_luca-stealer_satacom_vidar

  • Size

    1.1MB

  • Sample

    250704-nm9skaslw4

  • MD5

    87f14f8b32068b41f40bdcb9dd3f4740

  • SHA1

    075f8cbf828b56e00a49896a37a9a10cba2bb8e4

  • SHA256

    ce884a5eb472ced01723be2bd3686c482abe1b376d2283e205a40209438187a0

  • SHA512

    dcd7bba3451e8e1bcb9e585564835711a16a8d0d3b7722ce7c760eece06250ba51fcd72d510c1f8dbbf9c8ef327755c3825dc92c329033453637e5af4320bccc

  • SSDEEP

    24576:U0/C6CdH79Us2PtOsyJpdoE5gamP99nVWtWT6ZQ:U0/qswr5qLVW4Y

Malware Config

Targets

    • Target

      2025-07-04_87f14f8b32068b41f40bdcb9dd3f4740_black-basta_cobalt-strike_luca-stealer_satacom_vidar

    • Size

      1.1MB

    • MD5

      87f14f8b32068b41f40bdcb9dd3f4740

    • SHA1

      075f8cbf828b56e00a49896a37a9a10cba2bb8e4

    • SHA256

      ce884a5eb472ced01723be2bd3686c482abe1b376d2283e205a40209438187a0

    • SHA512

      dcd7bba3451e8e1bcb9e585564835711a16a8d0d3b7722ce7c760eece06250ba51fcd72d510c1f8dbbf9c8ef327755c3825dc92c329033453637e5af4320bccc

    • SSDEEP

      24576:U0/C6CdH79Us2PtOsyJpdoE5gamP99nVWtWT6ZQ:U0/qswr5qLVW4Y

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks