Overview

overview

10

Static

static

10

2024-126-0...ry.exe

windows7-x64

1

2024-126-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-126-0x0000000000400000-0x0000000000629000-memory.dmp

  • Size

    2.2MB

  • MD5

    9a47da46bcf712d3f7577ffb619b203d

  • SHA1

    cf69983c1926a6195b3d2761f813a0f38c430320

  • SHA256

    4181882dab89f6359e09932617d8a943b3bb0f1aa695066eaf4c2cc9cf7e9c8a

  • SHA512

    f2f198a5e1468a0c8fd2bb91c15d48516880aebc4e05386985e751ec23cdf050519db2dbc8635abc78059a188dc7ec7e5cb99f4c29a11910792a45d4b416092f

  • SSDEEP

    24576:zlUz++Kb0RtnINUgs5UTcp2Cs690Kt6KOfYnslT9if2g9su7Vr0Yd:z

Score
10/10
stealerstealc

Malware Config

Extracted

Family

stealc

C2

http://5.42.66.25/1b17ccc0c3d00b18.php

Signatures

  • Detects Stealc stealer 1 IoCs
    stealer
  • Stealc family
    stealc
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-126-0x0000000000400000-0x0000000000629000-memory.dmp
    .exe windows x86


    Headers

    Sections