General

  • Target

    installer_00007FF75BCB4000V2.exe

  • Size

    136KB

  • MD5

    2d2f4125ea48cebb62b7577439322ab3

  • SHA1

    5e16992ada7339f8f2346de7dbe2742f1262f0a5

  • SHA256

    29819bcd1f02f4cd9fc106e940dae7498dfcc8ac78276558683a9a365828febb

  • SHA512

    32f0533f70583863fbc39e286f16c780957d126f70f1ebca69419cf286ec32e9e6c99e44804826f398f7aecaedbf7b54ff38924eff014d269de56c147b3e6425

  • SSDEEP

    3072:H+QZx7YwQ5jXl9t6Swu6bCYf5z46CyOVfF00IiVW:eQZ1/Q9jtpf4DHO/fTVW

Score
10/10

Malware Config

Extracted

Family

stealc

C2

http://185.221.196.69

Attributes
  • url_path

    /c7d4a78bf4541b22.php

rc4.plain

Signatures

  • Stealc family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • installer_00007FF75BCB4000V2.exe
    .exe windows:5 windows x86

    372dad7e771f409df9ab1b912548c291


    Headers

    Imports

    Sections