General
-
Target
1292-2-0x0000000000400000-0x000000000062D000-memory.dmp
-
Size
2.2MB
-
MD5
0cd860e5d9e5536b0369828d43b04fff
-
SHA1
3d57ec3707ca1094bfc6ad14e7d4fcadf462453d
-
SHA256
ac493e7f4eb858963a480eb1409f888626d56d0fac4606ecaa8cb16a3b82b311
-
SHA512
3e374df9e3ed427522e137bb086e2610e02eda19e00eb40e26173403adf34fa5a4cd13e1c67dde14018d4c96f50fb97a80b26ce12564b7b20ee543bb2838e5f8
-
SSDEEP
3072:kiMrDR6PwbpTK8Q5Uzf4JElJvIT4IYnRq:bMrFgwbJKAzAElJA8I4
Score
10/10
Malware Config
Extracted
Family
stealc
C2
http://christopherant�nio.top
Attributes
-
url_path
/e9c345fc99a4e67e.php
rc4.plain
Signatures
-
Stealc family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1292-2-0x0000000000400000-0x000000000062D000-memory.dmp
Headers
Sections