Overview

overview

10

Static

static

1

d6e2a79bc8...b5.exe

windows7-x64

10

d6e2a79bc8...b5.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d6e2a79bc87d48819fabe332dd3539f572605bb6091d34ae7d25ae0934b606b5

  • Size

    731KB

  • Sample

    240410-rqh1ssea8x

  • MD5

    c5baf146ada97b638b337d94eaeabe22

  • SHA1

    aa3e65e4881e937b51286c3ae0649df5dd7eda6d

  • SHA256

    d6e2a79bc87d48819fabe332dd3539f572605bb6091d34ae7d25ae0934b606b5

  • SHA512

    42462f1287ae3e48881b0ad5122b5af2de84e7ffb1188e19401ea7f02af50ba997064bf06f956bdf04ea42ad8ca13f4a205e8472084757d43831ef67532117f0

  • SSDEEP

    12288:mq9tmvboNKAM9qPg6f0blJwoodEJLaCyi5yHkCkaxJMEL6rCPUh/eNo:mq9mENKAiGolJwooKJVybxHkCPUhGNo

Score
10/10
outsteelspywarestealer

Malware Config

Targets

    • Target

      d6e2a79bc87d48819fabe332dd3539f572605bb6091d34ae7d25ae0934b606b5

    • Size

      731KB

    • MD5

      c5baf146ada97b638b337d94eaeabe22

    • SHA1

      aa3e65e4881e937b51286c3ae0649df5dd7eda6d

    • SHA256

      d6e2a79bc87d48819fabe332dd3539f572605bb6091d34ae7d25ae0934b606b5

    • SHA512

      42462f1287ae3e48881b0ad5122b5af2de84e7ffb1188e19401ea7f02af50ba997064bf06f956bdf04ea42ad8ca13f4a205e8472084757d43831ef67532117f0

    • SSDEEP

      12288:mq9tmvboNKAM9qPg6f0blJwoodEJLaCyi5yHkCkaxJMEL6rCPUh/eNo:mq9mENKAiGolJwooKJVybxHkCPUhGNo

    Score
    10/10
    outsteelspywarestealer

    • OutSteel

      OutSteel is a file uploader and document stealer written in AutoIT.

      stealeroutsteel

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks