Overview

overview

10

Static

static

1

8ab3879ed4...c4.exe

windows7-x64

10

8ab3879ed4...c4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8ab3879ed4b1601feb0de11637c9c4d1baeb5266f399d822f565299e5c1cd0c4

  • Size

    563KB

  • Sample

    240410-pnppfsff32

  • MD5

    f6ce89bf34e3ff6509a32347c400ca8d

  • SHA1

    c4da78729b0e12c30c55036b1df7093ccd0ef719

  • SHA256

    8ab3879ed4b1601feb0de11637c9c4d1baeb5266f399d822f565299e5c1cd0c4

  • SHA512

    02eaec42b422eded7b669caa4018983dd1aa5a7795e4a88ede5821920c5be91f69940a06c35a211315e809c4b29674a574922f249d5a0cc11f332462cba7ff5b

  • SSDEEP

    12288:9X2AHrixB7BziTfP5/BVHxuISKfAQslKsWg+IOefuqK/9EU5QgD3:9IzNwfR/BVHgInfA3A049Eix

Score
10/10
outsteelspywarestealer

Malware Config

Targets

    • Target

      8ab3879ed4b1601feb0de11637c9c4d1baeb5266f399d822f565299e5c1cd0c4

    • Size

      563KB

    • MD5

      f6ce89bf34e3ff6509a32347c400ca8d

    • SHA1

      c4da78729b0e12c30c55036b1df7093ccd0ef719

    • SHA256

      8ab3879ed4b1601feb0de11637c9c4d1baeb5266f399d822f565299e5c1cd0c4

    • SHA512

      02eaec42b422eded7b669caa4018983dd1aa5a7795e4a88ede5821920c5be91f69940a06c35a211315e809c4b29674a574922f249d5a0cc11f332462cba7ff5b

    • SSDEEP

      12288:9X2AHrixB7BziTfP5/BVHxuISKfAQslKsWg+IOefuqK/9EU5QgD3:9IzNwfR/BVHgInfA3A049Eix

    Score
    10/10
    outsteelspywarestealer

    • OutSteel

      OutSteel is a file uploader and document stealer written in AutoIT.

      stealeroutsteel

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks