General
-
Target
1968-2-0x0000000000400000-0x000000000062D000-memory.dmp
-
Size
2.2MB
-
MD5
441ecc10e73fc5f17ccef4b7a853dd45
-
SHA1
a9bc9b6c1246e25fea27d393e5beb2f9a6d0ae25
-
SHA256
00035132f84f1024ed56d6b917a72f17e3feed138220da70ddf7ffaaa61f91ab
-
SHA512
cd64749e33550245a98d0e604ba1516c449c6ae2db75667f1690e0c114d206ef4886d4223c4a665b591b92ada84f14b1db7f99b1421d52e6b4e741006bd0ee5c
-
SSDEEP
3072:kiMrDR6PwbpTK8Q5Uzf4JElJvIT4RYURq:bMrFgwbJKAzAElJA8RX
Score
10/10
Malware Config
Extracted
Family
stealc
C2
http://christopherant�nio.top
Attributes
-
url_path
/e9c345fc99a4e67e.php
rc4.plain
Signatures
-
Stealc family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1968-2-0x0000000000400000-0x000000000062D000-memory.dmp
Headers
Sections