General
-
Target
329dcb6dad9f6417897aabee2c031e81d1e2fe054c0d30815af204405897dab3
-
Size
682KB
-
Sample
230129-v6xqnsff86
-
MD5
b890b71fc8ae5c295de0727f811f01d9
-
SHA1
aa8fcf80df7d8c5aaa7d6dc8180b7d83746a5230
-
SHA256
329dcb6dad9f6417897aabee2c031e81d1e2fe054c0d30815af204405897dab3
-
SHA512
60bdd8fc317fb2632a738c234ee1a0a7cad5140bffa16860a08247e69e3bbe9074b8a4b6dc32edf706a80717c3ad545d8a29dd25527856c81f2c75f1bbea7fd4
-
SSDEEP
12288:Z2bYlne6BkD5Eg0u81mF8Z6nIiMQoYsS3jid3AbSc6OqImFaRWo:Z2bYlnrkL0fmNnIMtZE35hOgF
Malware Config
Targets
-
-
Target
329dcb6dad9f6417897aabee2c031e81d1e2fe054c0d30815af204405897dab3
-
Size
682KB
-
MD5
b890b71fc8ae5c295de0727f811f01d9
-
SHA1
aa8fcf80df7d8c5aaa7d6dc8180b7d83746a5230
-
SHA256
329dcb6dad9f6417897aabee2c031e81d1e2fe054c0d30815af204405897dab3
-
SHA512
60bdd8fc317fb2632a738c234ee1a0a7cad5140bffa16860a08247e69e3bbe9074b8a4b6dc32edf706a80717c3ad545d8a29dd25527856c81f2c75f1bbea7fd4
-
SSDEEP
12288:Z2bYlne6BkD5Eg0u81mF8Z6nIiMQoYsS3jid3AbSc6OqImFaRWo:Z2bYlnrkL0fmNnIMtZE35hOgF
Score10/10-
Echelon
Echelon is a .NET stealer that targets passwords from browsers, email and cryptocurrency clients.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-