Extracted

• • Target

    906fe0618157118c0f1eec481a47f61de2ea4fd114e0418859f4bf2fe44113af.exe

  • Size

    303KB

  • MD5

    fabbae0153826c2a65fc8c4030ff0658

  • SHA1

    2a2341bf99b2978c5a4f18507a23935e06b1f1bf

  • SHA256

    906fe0618157118c0f1eec481a47f61de2ea4fd114e0418859f4bf2fe44113af

  • SHA512

    d540a918507d97ed59f13e53ed7cbe98f87bbf9fbfc26810931f771849a103683517b5fcf54aa9d3fbe1e61f2d686306079e8616adfd71be736ae078d358f81c

  • SSDEEP

    6144:jT8T6MDdbICydeBbUoGYyo51ZfpvwrmA1D0oy9t:jTq4oGYys1ZxvK1Du9t

  Score

  10^/10

  44caliberspywarestealer

  • 44Caliber

    An open source infostealer written in C#.

    stealer44caliber

  • 44Caliber family

    44caliber

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2