General
-
Target
1920-2-0x0000000000400000-0x0000000000717000-memory.dmp
-
Size
3.1MB
-
MD5
661c22722e00a296416eb618f0e86da5
-
SHA1
e8860a944c00bcd6fe3d988f671c2cdb58b186f6
-
SHA256
a173872534392b3b8d3c6da78b8dd9ae395ffe9caa4a652e5c974e4f68b135e5
-
SHA512
804f5c0240b46b57f1b35d97ce90edebb0fac8c24db184fd9bf7fa921a65ddb9dd00604779f14d1a30e805855e74adbde7f647f66c3cefef28607b437dde5b98
-
SSDEEP
3072:YixkPwbpTK8Q5Uzf4JElJvIT4ANqOp5cCXjoaRq1cg8uve:fxmwbJKAzAElJA8ANqOp5cCsoCcg8s
Score
10/10
Malware Config
Extracted
Family
stealc
C2
http://bryanzachary.top
Attributes
-
url_path
/e9c345fc99a4e67e.php
rc4.plain
Signatures
-
Stealc family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1920-2-0x0000000000400000-0x0000000000717000-memory.dmp
Headers
Sections