Extracted

• • Target

    file.exe

  • Size

    245KB

  • MD5

    02c0527b5d7ae4a6e5fb3176b3edef66

  • SHA1

    68126e598273ccc5629c0485b3791a19bb69fc69

  • SHA256

    1310c11b53ad451a8222bd308be8d809e6e8969c3ab298892825b69308e95177

  • SHA512

    aa705db94c0f5a86b077331abb3137db92f5d4248d15f519da61a1d791a65ce9ab59a483150c464e35ff4734201bd4768de47fba3192104aa89c1917f4c9d7ed

  • SSDEEP

    3072:wXr4k+rXnUqEzmeA7BdPUdRQ0ziSXy63FTyWl65286qFGYTkp:k0kqnJEa7BudViUFTyWTV0GYTk

  Score

  10^/10

  stealcdiscoveryspywarestealer

  • Stealc

    Stealc is an infostealer written in C++.

    stealerstealc

  • Downloads MZ/PE file

  • Loads dropped DLL

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2