General

  • Target

    2025-07-04_c447d187f91645c2b2d77bb153a10e3f_amadey_black-basta_darkgate_elex_gcleaner_hijackloader_luca-stealer

  • Size

    1.5MB

  • Sample

    250704-vkemzawwfz

  • MD5

    c447d187f91645c2b2d77bb153a10e3f

  • SHA1

    7d863f5899efaa510cc1cf23f3337d945fb71bca

  • SHA256

    b35914b34d0c7ae4e0dcc69e361e3c8e510fd28de09bc2bab727de75eefe668e

  • SHA512

    1dd4f45c03ea03c38ea876de204ff93c681e30987fa33b23eaafb9eb14be63beab9a1c9a85fcb5825ea9dc113393caa94be63b935d9298396a4007934c145115

  • SSDEEP

    24576:vPuZEfRtJ3YeEAYOnwj1+M57Ef85PNMLasvqia/:ey1YeEAYOW1+M5A83M+svqia/

Malware Config

Targets

    • Target

      2025-07-04_c447d187f91645c2b2d77bb153a10e3f_amadey_black-basta_darkgate_elex_gcleaner_hijackloader_luca-stealer

    • Size

      1.5MB

    • MD5

      c447d187f91645c2b2d77bb153a10e3f

    • SHA1

      7d863f5899efaa510cc1cf23f3337d945fb71bca

    • SHA256

      b35914b34d0c7ae4e0dcc69e361e3c8e510fd28de09bc2bab727de75eefe668e

    • SHA512

      1dd4f45c03ea03c38ea876de204ff93c681e30987fa33b23eaafb9eb14be63beab9a1c9a85fcb5825ea9dc113393caa94be63b935d9298396a4007934c145115

    • SSDEEP

      24576:vPuZEfRtJ3YeEAYOnwj1+M57Ef85PNMLasvqia/:ey1YeEAYOW1+M5A83M+svqia/

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v16

Tasks