General

  • Target

    2025-07-04_f7d90a92e12c06884252f70f35600744_black-basta_cobalt-strike_luca-stealer_satacom_vidar

  • Size

    4.0MB

  • Sample

    250704-pl343ahn6z

  • MD5

    f7d90a92e12c06884252f70f35600744

  • SHA1

    336a080f0f88ffbc4e74bd76cdaaed7900fbd8e1

  • SHA256

    03aadb1308312525adc8c720fb24ea9ab3a7b71e90da48cfc470a5deedd1b5fd

  • SHA512

    7a1307a51caab5ba7fca6530d5030296f535bc156a0a356ea1bdc96f9c4d2816788f28a0e6753eae759e9cedeeaefb096326890c4409a9d28a19fbadaf218610

  • SSDEEP

    49152:xmBQS9cOM8Z7AihD2P6tBVxmXIGJJ9Uv77XeFicRdQxG9LZYrT/EDmaVDmg27RnN:LOJp2PK7e1ZmaVD527BWG

Malware Config

Targets

    • Target

      2025-07-04_f7d90a92e12c06884252f70f35600744_black-basta_cobalt-strike_luca-stealer_satacom_vidar

    • Size

      4.0MB

    • MD5

      f7d90a92e12c06884252f70f35600744

    • SHA1

      336a080f0f88ffbc4e74bd76cdaaed7900fbd8e1

    • SHA256

      03aadb1308312525adc8c720fb24ea9ab3a7b71e90da48cfc470a5deedd1b5fd

    • SHA512

      7a1307a51caab5ba7fca6530d5030296f535bc156a0a356ea1bdc96f9c4d2816788f28a0e6753eae759e9cedeeaefb096326890c4409a9d28a19fbadaf218610

    • SSDEEP

      49152:xmBQS9cOM8Z7AihD2P6tBVxmXIGJJ9Uv77XeFicRdQxG9LZYrT/EDmaVDmg27RnN:LOJp2PK7e1ZmaVD527BWG

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks