General

  • Target

    2025-07-04_f856ca53e1e657863ecac4e2ab2ade67_black-basta_cobalt-strike_satacom_vidar

  • Size

    3.4MB

  • Sample

    250704-pme4masxht

  • MD5

    f856ca53e1e657863ecac4e2ab2ade67

  • SHA1

    baf3aa1a6540813f88ab20094486b9df3fe0e8ff

  • SHA256

    913bc8ebc0c44ff243f63a5cc2ec1e269c4249a1ed8c9cbc902a883054c60eb6

  • SHA512

    ca7842dd470ff05a546cf4d4977dbd9248248d07431121ecfcafa15d7c07c1b7954b05f08ba4acaf237ab7e89efd70efef0495cf0e2d6e5f9d99995ba03e8926

  • SSDEEP

    49152:gdGC85GpqEgr6InEr+exnBj+ZAojisCCk+lX5kuyWTej2ZAUA/JzTQ+6ZKOO7wXv:Yrn+R5kevZTO7Ws

Malware Config

Targets

    • Target

      2025-07-04_f856ca53e1e657863ecac4e2ab2ade67_black-basta_cobalt-strike_satacom_vidar

    • Size

      3.4MB

    • MD5

      f856ca53e1e657863ecac4e2ab2ade67

    • SHA1

      baf3aa1a6540813f88ab20094486b9df3fe0e8ff

    • SHA256

      913bc8ebc0c44ff243f63a5cc2ec1e269c4249a1ed8c9cbc902a883054c60eb6

    • SHA512

      ca7842dd470ff05a546cf4d4977dbd9248248d07431121ecfcafa15d7c07c1b7954b05f08ba4acaf237ab7e89efd70efef0495cf0e2d6e5f9d99995ba03e8926

    • SSDEEP

      49152:gdGC85GpqEgr6InEr+exnBj+ZAojisCCk+lX5kuyWTej2ZAUA/JzTQ+6ZKOO7wXv:Yrn+R5kevZTO7Ws

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks