General
-
Target
2820-2-0x0000000000400000-0x0000000002AC0000-memory.dmp
-
Size
38.8MB
-
MD5
983a69de6c11a5421aaec2366b3e673d
-
SHA1
e76ce229408665b474904de57c81050c06216a9e
-
SHA256
ab5f95643c8fe4234440d0c54f7982cb1ea9c82445beea62a1ea160dcad3b187
-
SHA512
2db8b080152ce6b5b8f753de5cb70969d95b66ae6d530813687f228d7b00a3ff0bbb53b7f2c36797155675e60529b00d13a10be3960ea8cb70a2a63442576786
-
SSDEEP
3072:Wz/Zy16FJ0mi2kWGreC41jBFSZuaURTOQj+bs:0/ZQyPi2kW0eZjPSZcRTg
Score
10/10
Malware Config
Extracted
Family
stealc
C2
http://florianhabeler.icu
Attributes
-
url_path
/3886d2276f6914c4.php
rc4.plain
Signatures
-
Stealc family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2820-2-0x0000000000400000-0x0000000002AC0000-memory.dmp
Headers
Sections