Resubmissions

23-09-2023 06:20

230923-g3294afc74 6

22-09-2023 09:24

230922-ldawrshb83 10

21-09-2023 15:40

230921-s4gwbsha8z 4

19-09-2023 16:03

230919-thpvgscc79 1

19-09-2023 13:37

230919-qw5w3shc6s 10

19-09-2023 13:25

230919-qn8yrsbc63 10

13-09-2023 11:47

230913-nx8m9aeb62 4

12-09-2023 19:11

230912-xv98qshf86 10

12-09-2023 19:03

230912-xqr7cshf46 10

12-09-2023 11:47

230912-nybd5sca41 1

General

  • Target

    https://google.com

  • Sample

    230908-zfl9gafc35

Malware Config

Extracted

Family

44caliber

C2

https://discord.com/api/webhooks/1149409400176521257/YrwSiWlc4P3BlBDzNdIbUoMj5mE68tjNq7B1zbje9_AxJCReij7zN6fkYPqXUA--w0gT

Targets

    • Target

      https://google.com

    • 44Caliber

      An open source infostealer written in C#.

    • Downloads MZ/PE file

    • Stops running service(s)

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks