44caliber | b9f34d06a915b9a5d091acf7901dcf484e3894e73b72f621d2c484566dd818ac[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

b9f34d06a9...ac.exe

windows7_x64

b9f34d06a9...ac.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b9f34d06a915b9a5d091acf7901dcf484e3894e73b72f621d2c484566dd818ac.exe

Resource

win7-20220223-en

44caliber spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

b9f34d06a915b9a5d091acf7901dcf484e3894e73b72f621d2c484566dd818ac.exe

Resource

win10v2004-en-20220113

44caliber spyware stealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

b9f34d06a915b9a5d091acf7901dcf484e3894e73b72f621d2c484566dd818ac.bin
Size

441KB
MD5

292539bb44b33a26b14d7765695159d3
SHA1

6a17fdbf8ef8351ffe2ff67b4159ca69ddd48f28
SHA256

b9f34d06a915b9a5d091acf7901dcf484e3894e73b72f621d2c484566dd818ac
SHA512

a86a7c3183235a8a5371cc51f1b82373e9e8060df9beccedadf3fb8efab96d9b486ae50b6a601ce07c727a2035f043a574d736f2811c2485441bb3083dfbb516

Score

10^/10

44caliber

Malware Config

Extracted

Family

44caliber

C2

https://discord.com/api/webhooks/941047365631086602/V3bLg4Oq1PpqS0I4y0Iau7A7FmfvU9HodJZUfZspA0qYOBb5-PV3byaM7skOT24w1CCR

Signatures

44caliber family
44caliber

Files

b9f34d06a915b9a5d091acf7901dcf484e3894e73b72f621d2c484566dd818ac.bin
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 301KB - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy