44caliber | 8160930de4b082c7f57d69f9d5cbe8f820d9054f20b4b11bacbd318cdd4b6552 | Triage

Submit
Reports

Overview

overview

Static

static

Insidious.exe

windows11-21h2-x64

Sharing

General

Target

Insidious.exe
Size

303KB
Sample

250410-v7l1kaytfs
MD5

c43ddb1e9fd0b8f0c9c641dac61602f1
SHA1

b2da3dda97fb4d3244c8c29613b1cd36bec3b694
SHA256

8160930de4b082c7f57d69f9d5cbe8f820d9054f20b4b11bacbd318cdd4b6552
SHA512

ec26ab1b75a99d5bf05191d74aa688fce7689f4929f1da297693035fdaf4bd74aa43126e70fb93612a5e0c5e720213bf6d8c6d9906ff038827f8283ad3381064
SSDEEP

6144:hXt3T6MDdbICydeBimcmXKhJUPawkmA1D04+g:hXttpcmXKnUSJ1DCg

Score

10^/10

44caliber spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Insidious.exe

Resource

win11-20250410-en

44caliber spyware stealer

windows11-21h2-x64

14 signatures

300 seconds

Malware Config

Extracted

Family

44caliber

C2

https://discord.com/api/webhooks/1359941830325833781/Ee-iVoBJXHU7iXknLWKE1DQbAdhfEQ1EBs0-nU-V0FMyVWSdYMlkvENsrU--COpQB_Al

Targets

- Target
  
  Insidious.exe
- Size
  
  303KB
- MD5
  
  c43ddb1e9fd0b8f0c9c641dac61602f1
- SHA1
  
  b2da3dda97fb4d3244c8c29613b1cd36bec3b694
- SHA256
  
  8160930de4b082c7f57d69f9d5cbe8f820d9054f20b4b11bacbd318cdd4b6552
- SHA512
  
  ec26ab1b75a99d5bf05191d74aa688fce7689f4929f1da297693035fdaf4bd74aa43126e70fb93612a5e0c5e720213bf6d8c6d9906ff038827f8283ad3381064
- SSDEEP
  
  6144:hXt3T6MDdbICydeBimcmXKhJUPawkmA1D04+g:hXttpcmXKnUSJ1DCg
Score

10^/10

44caliber spyware stealer
- 44Caliber
  An open source infostealer written in C#.
  stealer 44caliber
- 44Caliber family
  44caliber
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Drops desktop.ini file(s)
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

44caliberspywarestealer

© 2018-2025

Terms | Privacy