General
-
Target
2364-2-0x0000000000400000-0x000000000062D000-memory.dmp
-
Size
2.2MB
-
MD5
d646fcb9cc650a4d5b1be4470102d37d
-
SHA1
6e9f720e9736e4a099371ebf4d2b4e424ee0ebe3
-
SHA256
c8f49d048ab818fca18353905d93271fd16702f293a7cea326bca3dcd1054cfd
-
SHA512
63141a579453923de4b99fd07d34b719dc3142510424246c1453baaf45019e639873a76670b25074d415c74046cf58dfefa6a5100aab6953811ad7eaae9cf36d
-
SSDEEP
3072:KwZx7tPwbpTK8Q5Uzf4JElJvIT4ePZeeRq:bZ1xwbJKAzAElJA8v0
Score
10/10
Malware Config
Extracted
Family
stealc
C2
http://171.22.28.221
Attributes
-
url_path
/5c06c05b7b34e8e6.php
rc4.plain
Signatures
-
Stealc family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2364-2-0x0000000000400000-0x000000000062D000-memory.dmp
Headers
Sections