General
-
Target
bdf9e31acebcc108b1cec12cbe2b42cd
-
Size
1.4MB
-
Sample
231220-q7bglsfad3
-
MD5
bdf9e31acebcc108b1cec12cbe2b42cd
-
SHA1
ed352a0648cec64d6ec41614e9eaa48e6b23ce59
-
SHA256
80a885b212b9c031aba01e908bdfb66d8b17c62e9e8334d4df8dbfa284dc3f6c
-
SHA512
0f628c2a653ebabf33a4391438fee3ced0c2f790bb7b4b0740cc8b13baad78d16cc905547d480b1f32d5b11adbc9985e2a9557c5a51fc8eb3690e2a4217549f5
-
SSDEEP
24576:ypwgTYi4Rdcvh4yFNNhlcaEFZVQLib/E42clNClR/m6RseOzvmC7di7WW4LASLKo:9gr54yFNNhlcdFZVQLib/z2clNClR/md
Malware Config
Targets
-
-
Target
bdf9e31acebcc108b1cec12cbe2b42cd
-
Size
1.4MB
-
MD5
bdf9e31acebcc108b1cec12cbe2b42cd
-
SHA1
ed352a0648cec64d6ec41614e9eaa48e6b23ce59
-
SHA256
80a885b212b9c031aba01e908bdfb66d8b17c62e9e8334d4df8dbfa284dc3f6c
-
SHA512
0f628c2a653ebabf33a4391438fee3ced0c2f790bb7b4b0740cc8b13baad78d16cc905547d480b1f32d5b11adbc9985e2a9557c5a51fc8eb3690e2a4217549f5
-
SSDEEP
24576:ypwgTYi4Rdcvh4yFNNhlcaEFZVQLib/E42clNClR/m6RseOzvmC7di7WW4LASLKo:9gr54yFNNhlcdFZVQLib/z2clNClR/md
Score10/10-
44Caliber
An open source infostealer written in C#.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-