Extracted

• • Target

    999efe8a7d32764901ed04b7cff249e07ad85ec3e7237e4578f11e9b29de4326.exe

  • Size

    254KB

  • MD5

    ef45b1ac26f3fb7cac0cf85c568bb881

  • SHA1

    09826670fa495347aec5ba11ca5cf04be417019e

  • SHA256

    999efe8a7d32764901ed04b7cff249e07ad85ec3e7237e4578f11e9b29de4326

  • SHA512

    cfd15c626aece1568311213fcc059ee24e0249f4e343a79b68f1f7b005eeb175b7b1f411b71017b564d3a9f912f9282c81e77be12f62d90d8bdacd4ffc8c826f

  • SSDEEP

    3072:K9xGvZKt0iEfvg6FVs94VIg9EGbJh5j3hKrjRTRS926tyIi/p/4CY/:644tAfvFFi9Tg95hty6926IIiG

  Score

  10^/10

  stealcdiscoveryspywarestealer

  • Stealc

    Stealc is an infostealer written in C++.

    stealerstealc

  • Downloads MZ/PE file

  • Deletes itself

  • Loads dropped DLL

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2