General
-
Target
208-1186-0x0000000000400000-0x0000000000629000-memory.dmp
-
Size
2.2MB
-
MD5
1b55a16aa767081d14a89446cf3a2439
-
SHA1
5cdd14fa7406b0ad54a6f6334cade6fe39772260
-
SHA256
2aff1a221c09059a4a6f7129afd03a94b4087590c771a3ce1f0d9e4c9786755d
-
SHA512
415527ce1f4b831c6e6f40daa5a25d9fce0a98605fcc602d6be570494173a83eeb4d04eb20564d5828f8e51e48f3ad92ac771800649fd942f259e60be278e989
-
SSDEEP
12288:cFSwuD3/yZ/vfU56TfXDL97zjad7OM4bZqJ:c+J
Score
10/10
Malware Config
Extracted
Family
stealc
C2
http://rewe-coupouns.com
Attributes
-
url_path
/693386d591752f22.php
rc4.plain
Signatures
-
Detects Stealc stealer 1 IoCs
-
Stealc family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
208-1186-0x0000000000400000-0x0000000000629000-memory.dmp
Headers
Sections