outsteel | 3d7a05e7ba9b3dd84017acab9aab59b459db6c50e9224ec1827cbf0a2aee47db | Triage

Submit
Reports

Overview

overview

Static

static

3d7a05e7ba...db.exe

windows7_x64

3d7a05e7ba...db.exe

windows10-2004_x64

Sharing

General

Target

3d7a05e7ba9b3dd84017acab9aab59b459db6c50e9224ec1827cbf0a2aee47db
Size

614KB
Sample

220228-dvv92adac4
MD5

124f0b9dadbef030a4cba26393ce25df
SHA1

15479f31109fd0a367ad681fb3ee63c6fb0ade0a
SHA256

3d7a05e7ba9b3dd84017acab9aab59b459db6c50e9224ec1827cbf0a2aee47db
SHA512

7ef9d49f28d1728a6ef58a9a2d39848dee0f08184b202aeb65460869fed35e6f99466d9bce8cb6582fd4089bc63af95216c1252af1f2a3dd2c24e43546352a74

Score

10^/10

outsteel spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

3d7a05e7ba9b3dd84017acab9aab59b459db6c50e9224ec1827cbf0a2aee47db.exe

Resource

win7-20220223-en

outsteel spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3d7a05e7ba9b3dd84017acab9aab59b459db6c50e9224ec1827cbf0a2aee47db.exe

Resource

win10v2004-en-20220113

outsteel spyware stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  3d7a05e7ba9b3dd84017acab9aab59b459db6c50e9224ec1827cbf0a2aee47db
- Size
  
  614KB
- MD5
  
  124f0b9dadbef030a4cba26393ce25df
- SHA1
  
  15479f31109fd0a367ad681fb3ee63c6fb0ade0a
- SHA256
  
  3d7a05e7ba9b3dd84017acab9aab59b459db6c50e9224ec1827cbf0a2aee47db
- SHA512
  
  7ef9d49f28d1728a6ef58a9a2d39848dee0f08184b202aeb65460869fed35e6f99466d9bce8cb6582fd4089bc63af95216c1252af1f2a3dd2c24e43546352a74
Score

10^/10

outsteel spyware stealer
- OutSteel
  OutSteel is a file uploader and document stealer written in AutoIT.
  stealer outsteel
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

outsteelspywarestealer

behavioral2

outsteelspywarestealer

© 2018-2024

Terms | Privacy