Overview

overview

10

Static

static

Free Vds 2...us.exe

windows7-x64

10

Free Vds 2...us.exe

windows10-2004-x64

10

Free Vds 2023/Vds.xml

windows7-x64

1

Free Vds 2023/Vds.xml

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Free_Vds_2023.rar

  • Size

    291KB

  • Sample

    221114-sd7dasge7t

  • MD5

    e1990c9f371703113021b64ec1e706a7

  • SHA1

    2b19d147d562ff2cbc730c82c2338df7c6c47a56

  • SHA256

    538f027fd26350de02d08c067d0eb960b8d68af7db3f5c265fbde67c612f8a66

  • SHA512

    9f5188b7ef361ed3f845aed6fcc93ed526a958d341240cd26181a194263fbc388c18a72d164a9fcd4ec41e9ef239d64df8998f02f26554cfb0579ad56c229a52

  • SSDEEP

    6144:ivcvfq6vF4Lzg+dECelA1JQ7Hw/brNncTYPA+acyg2dpll5V4DReUyOidj:iQi6N4vgYEhlA1JQ780aBz27lTV49e40

Score
10/10
44caliberspywarestealer

Malware Config

Targets

    • Target

      Free Vds 2023/Anonymous.exe

    • Size

      303KB

    • MD5

      b33a013306a7cf4cc044fd39cf5ad9b5

    • SHA1

      e6e11e998a06a4598ab1dc15c272fbe5604ede7c

    • SHA256

      9344c0f019587a46ef6d8e71304ba5b1444db9f37bdc7ebf4df9eaed5131599f

    • SHA512

      ac8b8fa73ef90b81514d46655175c5a4f1c9f1525066705b7c0d6bfedcce30d75c8d4d2b38b1dcfa3e6752f2064eadd5a554eba6ca2b0d9201f781e9cbd21415

    • SSDEEP

      6144:yvlT6MDdbjCydec1oMnGoS6pI1w8oKKXE5HmADD0Xqq:yvVJnGoSSc5kEjDDpq

    Score
    10/10
    44caliberspywarestealer

    • 44Caliber

      An open source infostealer written in C#.

      stealer44caliber

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

    • Target

      Free Vds 2023/Vds.config

    • Size

      161B

    • MD5

      c16b0746faa39818049fe38709a82c62

    • SHA1

      3fa322fe6ed724b1bc4fd52795428a36b7b8c131

    • SHA256

      d61bde901e7189cc97d45a1d4c4aa39d4c4de2b68419773ec774338506d659ad

    • SHA512

      cbcba899a067f8dc32cfcbd1779a6982d25955de91e1e02cee8eaf684a01b0dee3642c2a954903720ff6086de5a082147209868c03665c89f814c6219be2df7c

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Credentials in Files

1
T1081

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks