QWERTY

A Windows-based information stealer was recovered alongside its debug symbols, revealing heavily obfuscated logic tied to system-specific behavior. The sample collects browser data and prepares it for network transmission, but key runtime values depend on the host environment.

Your task is to analyze the binary and understand how it derives its configuration at runtime, then recover the external endpoint it communicates with.

flag format: flag{(c2_ip_address)}