General
-
Target
a339a377abbfb9c0ee85652901cc67b3
-
Size
1.0MB
-
Sample
240225-je915sff4w
-
MD5
a339a377abbfb9c0ee85652901cc67b3
-
SHA1
cbafbcefd502b16d4661a2da17fc6d04b34ee0cb
-
SHA256
0a0a341eb3849788273e62d2acd28de82942f01396c7543f85a5b8a8420e0c44
-
SHA512
a43ae5d6cf03c96ae757bdb97521562c64e7248d73791ecfae1498df4e9b7401d359bba5e56a3ba2c16cc0e6f30cfc6b9c421667353cb4677b98977c0082282d
-
SSDEEP
24576:JjE5gAVhhUF54clNf7+6uHAW92zt/sWu2BSMCqDoR4E:go54clgLH+tkWJ0Nj
Malware Config
Targets
-
-
Target
a339a377abbfb9c0ee85652901cc67b3
-
Size
1.0MB
-
MD5
a339a377abbfb9c0ee85652901cc67b3
-
SHA1
cbafbcefd502b16d4661a2da17fc6d04b34ee0cb
-
SHA256
0a0a341eb3849788273e62d2acd28de82942f01396c7543f85a5b8a8420e0c44
-
SHA512
a43ae5d6cf03c96ae757bdb97521562c64e7248d73791ecfae1498df4e9b7401d359bba5e56a3ba2c16cc0e6f30cfc6b9c421667353cb4677b98977c0082282d
-
SSDEEP
24576:JjE5gAVhhUF54clNf7+6uHAW92zt/sWu2BSMCqDoR4E:go54clgLH+tkWJ0Nj
Score10/10-
Detects Echelon Stealer payload
-
Echelon
Echelon is a .NET stealer that targets passwords from browsers, email and cryptocurrency clients.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-