Overview

overview

10

Static

static

10

4336-1077-...ry.exe

windows7-x64

10

4336-1077-...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4336-1077-0x0000000000400000-0x0000000000629000-memory.dmp

  • Size

    2.2MB

  • MD5

    662b383011a4d765736ad61d43a3c870

  • SHA1

    458db798698c3e17129bd142e635b81a09a9bb42

  • SHA256

    071bbe4fe0cf4b502d44656ed2e44a4651ba0ff8f4906e65b268e8d1e9e50ecf

  • SHA512

    45680afa2f6946a82e6d2e0f65440441995375e0e85a483ca3333cf7a6209997a93783d7f3d7f91a0a48a5f21ee7c04de38e9c126b9fd43286682b891b6d9c8b

  • SSDEEP

    12288:zFSwuD3/yZ/vfU56TfXDL97zjad7OM4bZ:z

Score
10/10
stealerstealc

Malware Config

Extracted

Family

stealc

C2

http://rewe-coupouns.com/693386d591752f22.php

Signatures

  • Detects Stealc stealer 1 IoCs
    stealer
  • Stealc family
    stealc
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4336-1077-0x0000000000400000-0x0000000000629000-memory.dmp
    .exe windows x86


    Headers

    Sections