Overview

overview

10

Static

static

3

8370cd5884...2c.exe

windows7-x64

10

8370cd5884...2c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8370cd58844abd13fc7a113aabcec32c

  • Size

    869KB

  • Sample

    240131-e2hsysbeh2

  • MD5

    8370cd58844abd13fc7a113aabcec32c

  • SHA1

    4378b1039b722723ebe0832da64b7f1885b8c367

  • SHA256

    f5d4d00585bc3ce90b52da8ab326bfbf9d56a0d1b6db730d64fdd57a57eeb26d

  • SHA512

    84dd5b8f7082e6f72e94b1e850d3b44d47cbc10a8a1048a1239708b1775e444191f830fd9536cf54c06854d4407e06b9fa652bb7b54eb48bfe499cf2d4afb0be

  • SSDEEP

    12288:RoxMjZnX1gzrgPFcE0Mt0aiKyedOmfkz/XUkIBlrNfmzKIod1Iiq4DB1huOI7GZ/:RNlq6902zX9dOmfkz/HIQ0

Score
10/10
44caliberspywarestealer

Malware Config

Targets

    • Target

      8370cd58844abd13fc7a113aabcec32c

    • Size

      869KB

    • MD5

      8370cd58844abd13fc7a113aabcec32c

    • SHA1

      4378b1039b722723ebe0832da64b7f1885b8c367

    • SHA256

      f5d4d00585bc3ce90b52da8ab326bfbf9d56a0d1b6db730d64fdd57a57eeb26d

    • SHA512

      84dd5b8f7082e6f72e94b1e850d3b44d47cbc10a8a1048a1239708b1775e444191f830fd9536cf54c06854d4407e06b9fa652bb7b54eb48bfe499cf2d4afb0be

    • SSDEEP

      12288:RoxMjZnX1gzrgPFcE0Mt0aiKyedOmfkz/XUkIBlrNfmzKIod1Iiq4DB1huOI7GZ/:RNlq6902zX9dOmfkz/HIQ0

    Score
    10/10
    44caliberspywarestealer

    • 44Caliber

      An open source infostealer written in C#.

      stealer44caliber

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks