Managed XDR
Group-IB MDP Report
File info
Filename: home-petik-ss-malware-2025-07-03_750cc263bc0f66e48ea7df6f2f714327_amadey_black-basta_elex_luca-stealer_smoke-loader
File Type: PE32 executable (GUI) Intel 80386, for MS Windows
File Size: 3 MB
Env info
win7/x86 en
Hashes
SHA1: 5517863b0dab3df86bc1c6bfcbb378d352c49d60
SHA256: 575d4a506099a983c3e91b8c8dfa0b273678ba4480386bdec429b019e7f09cc9
MD5: 750cc263bc0f66e48ea7df6f2f714327
Malwares
Tinba
Signatures
Privilege Escalation
T1134 opens_process_token: Opens the access token associated with a process
Defense Evasion
T1027.002 pe_features: Executable file has PE anomalies (may be false positive)
T1134 opens_process_token: Opens the access token associated with a process
Other
yara_rules: Static rules
no_graphical_activity: No graphic activity
next report: 12f59bf3-7712-4844-b321-58868dbef1ce
previous report: 8f9b6696-5d5b-40b3-b0f7-aa862e66c5c5
Managed XDR