44caliber | hxxps://google[.]com | Triage

Resubmissions

23-09-2023 06:20

230923-g3294afc74 6

22-09-2023 09:24

230922-ldawrshb83 10

21-09-2023 15:40

230921-s4gwbsha8z 4

19-09-2023 16:03

230919-thpvgscc79 1

19-09-2023 13:37

230919-qw5w3shc6s 10

19-09-2023 13:25

230919-qn8yrsbc63 10

13-09-2023 11:47

230913-nx8m9aeb62 4

12-09-2023 19:11

230912-xv98qshf86 10

12-09-2023 19:03

230912-xqr7cshf46 10

12-09-2023 11:47

230912-nybd5sca41 1

Sharing

General

Target

https://google.com
Sample

230908-zfl9gafc35

Score

10^/10

44caliber evasion stealer

Malware Config

Extracted

Family

44caliber

C2

https://discord.com/api/webhooks/1149409400176521257/YrwSiWlc4P3BlBDzNdIbUoMj5mE68tjNq7B1zbje9_AxJCReij7zN6fkYPqXUA--w0gT

Targets

- Target
  
  https://google.com
Score

10^/10

44caliber evasion stealer
- 44Caliber
  An open source infostealer written in C#.
  stealer 44caliber
- Downloads MZ/PE file
- Stops running service(s)
  evasion
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

urlscan1

behavioral1

44caliberevasionstealer