Overview

overview

10

Static

static

3

3d54f10e67...a8.exe

windows7-x64

10

3d54f10e67...a8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    97ec989085e99d2df0426b73620812b0.bin

  • Size

    392KB

  • Sample

    230816-b9yycsgc2z

  • MD5

    bf189b52cb1e5e8b308aa861fbdd1953

  • SHA1

    a5b09b2c1bbebe189ffe70675eb150a796f59596

  • SHA256

    930c8a665255361326e0d97aef0f43844c08da20ddcb2949da46905ac5b86568

  • SHA512

    83761d1583ade17f5665b02f7d64bbad30a8c44db5be5d09d25d75c8b2be59c6a1af8ae04c4e5cc44aa41ebc96e3a9c4197f0aa7ce4047d574b7a764a9b7ec49

  • SSDEEP

    6144:mqhswqgsktjKLzOIPbl69ltPBXHfXysE/cIhoCjJxuIkJrNlMWZdnnIPIwhP:HhZqgsktOfN6tPZXysVIhoKsiWnn27hP

Score
10/10
stealcstealer

Malware Config

Extracted

Family

stealc

C2

http://94.131.107.238/3aa13fff14e398a1.php

Targets

    • Target

      3d54f10e6726b1828ac0252c4bd80e0c4777bba4b34486c217bf2e629b8e67a8.exe

    • Size

      1.5MB

    • MD5

      97ec989085e99d2df0426b73620812b0

    • SHA1

      3e0f2934165679dd59094e75915a222d5788f381

    • SHA256

      3d54f10e6726b1828ac0252c4bd80e0c4777bba4b34486c217bf2e629b8e67a8

    • SHA512

      8ef9f76d00b8cefa56806420d2602b667c700b253c6f61f954935865d1c921fffb002911ce3c4da57d9038e9fc87bcd5e0ef46ea6f2454114b8cd92939cd30a5

    • SSDEEP

      12288:wL1Gr7+TspeaV64tA0sMdrl3xWzWF+ZuIXW3GAuk2RxRSzG:Vr7+TspeaV64yIlB472CZRxa

    Score
    10/10
    stealcstealer

    • Stealc

      Stealc is an infostealer written in C++.

      stealerstealc

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks