Extracted

• • Target

    a680029a0a1bd1aa336b5e4086104f21f2a97b054e6fb1b9fb122ed32786ce12.exe

  • Size

    303KB

  • MD5

    5fd5700f4787f405bc2a0fc6e6233037

  • SHA1

    ba4e438f6976803a6965fb5dd7187a9f0674e4c8

  • SHA256

    a680029a0a1bd1aa336b5e4086104f21f2a97b054e6fb1b9fb122ed32786ce12

  • SHA512

    f221ee33b25b57a3c39e5e0f872ecdf987dacfb6d134b93efa87b91868e685533e564f62975af5b5e36524f1d0dd505835f84bfe7385c98942feab254a4e9c23

  • SSDEEP

    6144:yFcT6MDdbICydeBvtCikGW9KJj6TmA1D0efJ:yFK1CikGeK5o1D1J

  Score

  10^/10

  44caliberspywarestealer

  • 44Caliber

    An open source infostealer written in C#.

    stealer44caliber

  • 44Caliber family

    44caliber

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2