outsteel | 506c90747976c4cc3296a4a8b85f388ab97b6c1cfae11096f95977641b8f8b6f | Triage

Sharing

General

Target

506c90747976c4cc3296a4a8b85f388ab97b6c1cfae11096f95977641b8f8b6f
Size

878KB
Sample

240410-m1zzvadc34
MD5

e3ed0d3b6f801d8ffe8dc18b262c14c5
SHA1

a3c499d65a090b2df7fb519a9a366f4cb3d39f79
SHA256

506c90747976c4cc3296a4a8b85f388ab97b6c1cfae11096f95977641b8f8b6f
SHA512

cc40b7f5e5acaecc3567635a4df4068f3f2d35253ff4db20dcdfcf8be98c3167643709173035980dd4030f338517c3b2f2cf12daadb5c45daf5b8094d6d48f34
SSDEEP

24576:dAHnh+eWsN3skA4RV1Hom2KXMmHau635:8h+ZkldoPK8Yaum

Score

10^/10

outsteel spyware stealer

Malware Config

Targets

- Target
  
  506c90747976c4cc3296a4a8b85f388ab97b6c1cfae11096f95977641b8f8b6f
- Size
  
  878KB
- MD5
  
  e3ed0d3b6f801d8ffe8dc18b262c14c5
- SHA1
  
  a3c499d65a090b2df7fb519a9a366f4cb3d39f79
- SHA256
  
  506c90747976c4cc3296a4a8b85f388ab97b6c1cfae11096f95977641b8f8b6f
- SHA512
  
  cc40b7f5e5acaecc3567635a4df4068f3f2d35253ff4db20dcdfcf8be98c3167643709173035980dd4030f338517c3b2f2cf12daadb5c45daf5b8094d6d48f34
- SSDEEP
  
  24576:dAHnh+eWsN3skA4RV1Hom2KXMmHau635:8h+ZkldoPK8Yaum
Score

10^/10

outsteel spyware stealer
- OutSteel
  OutSteel is a file uploader and document stealer written in AutoIT.
  stealer outsteel
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

outsteelspywarestealer

behavioral2

outsteelspywarestealer