Overview

overview

10

Static

static

10

2828-56-0x...ry.exe

windows7-x64

3

2828-56-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2828-56-0x0000000000400000-0x0000000002439000-memory.dmp

  • Size

    32.2MB

  • MD5

    aab73bb6067ba874d6f8cefa82922026

  • SHA1

    2081bca44847a0085ad7418e231a021e8a97287e

  • SHA256

    2c4a783e4ed880c21ce10d870113cca219fe1dd8bfd1d2c8d81cff8e0b0a384b

  • SHA512

    905c9b4215fbbe956874da05421880425062340f5204187ebcfb8be089be341b783d37e36fda3c8f5d583ed7766d3f4d164cfe910f9597cd3308b7cb0a1d5cdc

  • SSDEEP

    3072:3sbymMy0117esKhpV46+8raqCDlCSwSs:3sbyByJzp/+uaq01s

Score
10/10
stealc

Malware Config

Extracted

Family

stealc

C2

http://adriaenclaeys.top/e9c345fc99a4e67e.php

Signatures

  • Stealc family
    stealc
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2828-56-0x0000000000400000-0x0000000002439000-memory.dmp
    .exe windows x86


    Headers

    Sections