Overview

overview

10

Static

static

1

ea9e5ad0ef...e9.exe

windows7-x64

10

ea9e5ad0ef...e9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea9e5ad0ef82af2c0c75c371e683352a781eb2260a45c584d70995edec956ce9

  • Size

    1.4MB

  • Sample

    240410-r4457aeg5s

  • MD5

    41af4d9fbd0bc719212b78cd7a1b89ec

  • SHA1

    ca93ffbbc38fbd3c62fb31290a198284ac13be0d

  • SHA256

    ea9e5ad0ef82af2c0c75c371e683352a781eb2260a45c584d70995edec956ce9

  • SHA512

    1461694f1281cad81d823ac85c246480a3281a30b7e1319521bf8f39a70954dcc8cfe76aebaa8069dad133fbb0b5f68600d972c6bb5b8a1442372231fb196bca

  • SSDEEP

    24576:Hqk7E6r5Q7AaJBo3QXerYFnGTx5hJydkCPUhiOd:HqGNQ7AaJB9MQa5KdkC8hR

Score
10/10
outsteelspywarestealer

Malware Config

Targets

    • Target

      ea9e5ad0ef82af2c0c75c371e683352a781eb2260a45c584d70995edec956ce9

    • Size

      1.4MB

    • MD5

      41af4d9fbd0bc719212b78cd7a1b89ec

    • SHA1

      ca93ffbbc38fbd3c62fb31290a198284ac13be0d

    • SHA256

      ea9e5ad0ef82af2c0c75c371e683352a781eb2260a45c584d70995edec956ce9

    • SHA512

      1461694f1281cad81d823ac85c246480a3281a30b7e1319521bf8f39a70954dcc8cfe76aebaa8069dad133fbb0b5f68600d972c6bb5b8a1442372231fb196bca

    • SSDEEP

      24576:Hqk7E6r5Q7AaJBo3QXerYFnGTx5hJydkCPUhiOd:HqGNQ7AaJB9MQa5KdkC8hR

    Score
    10/10
    outsteelspywarestealer

    • OutSteel

      OutSteel is a file uploader and document stealer written in AutoIT.

      stealeroutsteel

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks