General

  • Target

    2025-07-04_83fd194f451005e4d91697712bf9db54_black-basta_cobalt-strike_luca-stealer_satacom_vidar

  • Size

    939KB

  • Sample

    250704-ns52kadp81

  • MD5

    83fd194f451005e4d91697712bf9db54

  • SHA1

    de9fff639f6e386c467fc2a90731d8be166c54ee

  • SHA256

    bd0d3e10324ef104498b22033a6bd0bd5abec2eefdd73c4c70fa16a831fc69bd

  • SHA512

    bb5ef51c9905fdeb3d0f75ee8a21be9f78a0aeaf0b6a2458e2735d00c8f45f5bba98f0156b3bec35d4e3aaf23603b50ba153297b885c782f4fd71551af124c75

  • SSDEEP

    24576:kNvo2uGjVQ6PcYwx5SSiVw6uAX8DS52tpz9ZRzbPmSZyo:kNAyxH65SW6H8DS52tdDpbRZy

Malware Config

Targets

    • Target

      2025-07-04_83fd194f451005e4d91697712bf9db54_black-basta_cobalt-strike_luca-stealer_satacom_vidar

    • Size

      939KB

    • MD5

      83fd194f451005e4d91697712bf9db54

    • SHA1

      de9fff639f6e386c467fc2a90731d8be166c54ee

    • SHA256

      bd0d3e10324ef104498b22033a6bd0bd5abec2eefdd73c4c70fa16a831fc69bd

    • SHA512

      bb5ef51c9905fdeb3d0f75ee8a21be9f78a0aeaf0b6a2458e2735d00c8f45f5bba98f0156b3bec35d4e3aaf23603b50ba153297b885c782f4fd71551af124c75

    • SSDEEP

      24576:kNvo2uGjVQ6PcYwx5SSiVw6uAX8DS52tpz9ZRzbPmSZyo:kNAyxH65SW6H8DS52tdDpbRZy

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks