General

  • Target

    Lucky Fixed.exe

  • Size

    1.3MB

  • Sample

    210519-5y9cmtm3y2

  • MD5

    1f4f57202ef12656df3582a8adef59d8

  • SHA1

    0f66c9ac00c19dd20827a78ffdfa4e63857abffb

  • SHA256

    6933c5d70f485687742b49b9310074cc4b948a293527ad0c7c78fb60d47efcb1

  • SHA512

    ae67c0aa6a1d87fdedf3ee08c050cb853bef45510383b13033285991ca983985ef1a8329a7782d2e02eb079b6c0246909c0110dfbd22ca921bd209446e1d0fcb

Score
10/10

Malware Config

Targets

    • Target

      Lucky Fixed.exe

    • Size

      1.3MB

    • MD5

      1f4f57202ef12656df3582a8adef59d8

    • SHA1

      0f66c9ac00c19dd20827a78ffdfa4e63857abffb

    • SHA256

      6933c5d70f485687742b49b9310074cc4b948a293527ad0c7c78fb60d47efcb1

    • SHA512

      ae67c0aa6a1d87fdedf3ee08c050cb853bef45510383b13033285991ca983985ef1a8329a7782d2e02eb079b6c0246909c0110dfbd22ca921bd209446e1d0fcb

    Score
    10/10
    • Echelon

      Echelon is a .NET stealer that targets passwords from browsers, email and cryptocurrency clients.

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks