44caliber | 18143d02f3cb2e83ae05d73f1f689b80b391f3466acd18dcbc021e1db7d40ee6 | Triage

Sharing

General

Target

bb6f6cb9b7597a2c7f6cd43f0d5a4d00N.exe
Size

603KB
Sample

240802-t7dthswfjh
MD5

bb6f6cb9b7597a2c7f6cd43f0d5a4d00
SHA1

ca253eda80c20befdd614e32905eaf63d5173214
SHA256

18143d02f3cb2e83ae05d73f1f689b80b391f3466acd18dcbc021e1db7d40ee6
SHA512

1022513e26622175e8b3547749093a1312714746ea912c70b6ccb86ce77775517c858548e55ced735f9d16e6f2f5e6580a91c22e9940b355253a3ec10ce3d83a
SSDEEP

12288:SBe6DXqAB5jpx7RuZmdnnc6WSjHPv7zOsZUayLXfNd87hCn:SjD3P7RuodnncLOH/OsGNFdm

Score

10^/10

44caliber blackguard stealer

Malware Config

Extracted

Family

44caliber

C2

https://discord.com/api/webhooks/1267968855829905480/cd8VhmflrMNSQlpEWSs3J3IgzJ2PtIhkWjXFZEHp3Mu4ug7xMvzT3DehOE9cFtYpx_aB

Targets

- Target
  
  bb6f6cb9b7597a2c7f6cd43f0d5a4d00N.exe
- Size
  
  603KB
- MD5
  
  bb6f6cb9b7597a2c7f6cd43f0d5a4d00
- SHA1
  
  ca253eda80c20befdd614e32905eaf63d5173214
- SHA256
  
  18143d02f3cb2e83ae05d73f1f689b80b391f3466acd18dcbc021e1db7d40ee6
- SHA512
  
  1022513e26622175e8b3547749093a1312714746ea912c70b6ccb86ce77775517c858548e55ced735f9d16e6f2f5e6580a91c22e9940b355253a3ec10ce3d83a
- SSDEEP
  
  12288:SBe6DXqAB5jpx7RuZmdnnc6WSjHPv7zOsZUayLXfNd87hCn:SjD3P7RuodnncLOH/OsGNFdm
Score

10^/10

44caliber blackguard stealer
- 44Caliber
  An open source infostealer written in C#.
  stealer 44caliber
- BlackGuard
  Infostealer first seen in Late 2021.
  stealer blackguard
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

44caliberblackguardstealer

behavioral2

44caliberblackguardstealer