Overview

overview

10

Static

static

10

4988-28-0x...ry.exe

windows7-x64

1

4988-28-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    4988-28-0x0000000010000000-0x00000000100A6000-memory.dmp

  • Size

    664KB

  • MD5

    e9425ca37947981a751678a30cf68c67

  • SHA1

    42bc8d21319f7a7535d374dbf31752faf4dfed29

  • SHA256

    fd771197de1eba62017006b45b7a5c7b95a9dc872a6ab30342d2de35a8ff55aa

  • SHA512

    2e19f1f6f03faac1f78351ad5f6b4cc3070a8ea84ef0fe5b734a91bc58777a5b69fc63ca0c8ddac1da80ecb6549c6f40f99f5b416569c5e215083496d927d5bc

  • SSDEEP

    1536:e1N8eUN3XalnEhqJB9xAEfTbPr++ykPjuTMQb6Cjo4Vwcb0mTiiT5a0JTrVWCr:wWVXEEho2E/r+S4r1JFa0JfVWCr

Score
10/10
stealc

Malware Config

Extracted

Family

stealc

rc4.plain

Signatures

  • Stealc family
    stealc
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4988-28-0x0000000010000000-0x00000000100A6000-memory.dmp
    .exe windows:5 windows x86


    Headers

    Sections