General
-
Target
1924-2-0x0000000000400000-0x000000000062D000-memory.dmp
-
Size
2.2MB
-
MD5
4d7859348e36544c893108d9c01fc4bf
-
SHA1
febf2654394bf24c451bc1a6acfe5c929023ca1c
-
SHA256
1e88692c3235cba072c70680726142f839a0a507e28ce75b54ae9603dd578c57
-
SHA512
dc93ea16e7d12c0485be4488d5c2933e487a84032a4ff23febfa50cdd0a3ffee0343955e0a2f2bc76ff8c7eb2a4e5164e10798addb31577942b71394a8bc2d2a
-
SSDEEP
3072:w+QZx7YwQ5jXl9t6Swu6bCYf5z46CyOVfFbyH0msI:PQZ1/Q9jtpf4DHO/byHVs
Score
10/10
Malware Config
Extracted
Family
stealc
C2
http://aidandylan.top
Attributes
-
url_path
/3886d2276f6914c4.php
rc4.plain
Signatures
-
Stealc family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1924-2-0x0000000000400000-0x000000000062D000-memory.dmp
Headers
Sections