General

  • Target

    0e1e2f87699a24d1d7b0d984c3622971028a0cafaf665c791c70215f76c7c8fe

  • Size

    598KB

  • Sample

    240410-ljnptaag52

  • MD5

    e4855693722de3856421b1b6920ba54d

  • SHA1

    9c50313f3b6d84a2b063d0acca64417bfe283d6d

  • SHA256

    0e1e2f87699a24d1d7b0d984c3622971028a0cafaf665c791c70215f76c7c8fe

  • SHA512

    5373fc8ac2839520492ac6fa03758ad9781c7a840b9091dba4e3b0f197519e7343de434f2e10ff55e85be8eea1f6f425e4b2f6a343b374852011c02ad70fbba5

  • SSDEEP

    12288:DsUwIuFHm5rgI6nU3jmUd0/ubH8dFZwB/aJ/0S:dduFIonUz0/umF6Vmj

Malware Config

Targets

    • Target

      0e1e2f87699a24d1d7b0d984c3622971028a0cafaf665c791c70215f76c7c8fe

    • Size

      598KB

    • MD5

      e4855693722de3856421b1b6920ba54d

    • SHA1

      9c50313f3b6d84a2b063d0acca64417bfe283d6d

    • SHA256

      0e1e2f87699a24d1d7b0d984c3622971028a0cafaf665c791c70215f76c7c8fe

    • SHA512

      5373fc8ac2839520492ac6fa03758ad9781c7a840b9091dba4e3b0f197519e7343de434f2e10ff55e85be8eea1f6f425e4b2f6a343b374852011c02ad70fbba5

    • SSDEEP

      12288:DsUwIuFHm5rgI6nU3jmUd0/ubH8dFZwB/aJ/0S:dduFIonUz0/umF6Vmj

    • OutSteel

      OutSteel is a file uploader and document stealer written in AutoIT.

    • OutSteel batch script

      Detects batch script dropped by OutSteel

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v15

Tasks