General
-
Target
reload-beta.exe
-
Size
1.6MB
-
Sample
240630-vlkkls1cpg
-
MD5
281d200e4d94f020e9945e3812aec967
-
SHA1
7738475daded508bd105bd296d1f47ae05febe68
-
SHA256
15973284c2f6be38e8ab31e01d3d0a59d87ff03c98126754a61283265cd769e3
-
SHA512
600e54b853cbf68f3862728d80f0ff1ad835b6baa6dbe57e2e28e81a90d4026ee56a7b395f322b353dde018369084bc45fb470fd550d231f06b39522c75aa9b0
-
SSDEEP
49152:hkTq24GjdGSiqkqXfd+/9AqYanieKdsX:h1EjdGSiqkqXf0FLYW
Behavioral task
behavioral1
Sample
reload-beta.exe
Resource
win10v2004-20240611-de
Malware Config
Extracted
stealerium
https://discord.com/api/webhooks/1257008132761194659/j4YbzwxG41tBMUV2ew7ukKuFT4XUWR1j2htz3bWYzHr9A_UbewGf2LUD0JL44NpvUur-
Targets
-
-
Target
reload-beta.exe
-
Size
1.6MB
-
MD5
281d200e4d94f020e9945e3812aec967
-
SHA1
7738475daded508bd105bd296d1f47ae05febe68
-
SHA256
15973284c2f6be38e8ab31e01d3d0a59d87ff03c98126754a61283265cd769e3
-
SHA512
600e54b853cbf68f3862728d80f0ff1ad835b6baa6dbe57e2e28e81a90d4026ee56a7b395f322b353dde018369084bc45fb470fd550d231f06b39522c75aa9b0
-
SSDEEP
49152:hkTq24GjdGSiqkqXfd+/9AqYanieKdsX:h1EjdGSiqkqXf0FLYW
-
Accesses Microsoft Outlook profiles
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-