Overview

overview

10

Static

static

3

b94b9203b9...59.exe

windows7-x64

10

b94b9203b9...59.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b94b9203b9682e94a0600f8ad2896e59

  • Size

    1.1MB

  • Sample

    240307-wbwesshb67

  • MD5

    b94b9203b9682e94a0600f8ad2896e59

  • SHA1

    f3316cebbc21d9becaa7744f92dc1de6b2ee31ff

  • SHA256

    4d76bd31c6cb18d229df1ec8fc0c929f37a4cdf694d2c885f1beaeddad3f14d6

  • SHA512

    31f0912abcf2b57ad0f8324ff1db0857c619c13f21be2833d0553ee5586ef9fdc9ec1ba16483ff111a7572627ae5c0619da1f08b7096ac454b39e9609b0dc913

  • SSDEEP

    12288:wyLyxYjZb/yKJ4S1ebC68hpaBUZc7U4p12N4IWgswpJRhpQtXjpyECP4WchMMd/J:mwbL4SPX0BecnphaJGqcQla

Score
10/10
44caliberspywarestealer

Malware Config

Targets

    • Target

      b94b9203b9682e94a0600f8ad2896e59

    • Size

      1.1MB

    • MD5

      b94b9203b9682e94a0600f8ad2896e59

    • SHA1

      f3316cebbc21d9becaa7744f92dc1de6b2ee31ff

    • SHA256

      4d76bd31c6cb18d229df1ec8fc0c929f37a4cdf694d2c885f1beaeddad3f14d6

    • SHA512

      31f0912abcf2b57ad0f8324ff1db0857c619c13f21be2833d0553ee5586ef9fdc9ec1ba16483ff111a7572627ae5c0619da1f08b7096ac454b39e9609b0dc913

    • SSDEEP

      12288:wyLyxYjZb/yKJ4S1ebC68hpaBUZc7U4p12N4IWgswpJRhpQtXjpyECP4WchMMd/J:mwbL4SPX0BecnphaJGqcQla

    Score
    10/10
    44caliberspywarestealer

    • 44Caliber

      An open source infostealer written in C#.

      stealer44caliber

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks