stealc | 74375fb2d74b7174b1444727d6bd1534918dce2deffdf037cfc3050c20679d83 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

file.exe

windows7-x64

3

file.exe

windows10-2004-x64

Sharing

General

Target

file.exe
Size

409KB
Sample

240507-y29ffsdg7z
MD5

5e32f62d26b4476c6862785b9d6b5db3
SHA1

8fc02bcd0def2535b64690e5a5ad4932bc92a398
SHA256

74375fb2d74b7174b1444727d6bd1534918dce2deffdf037cfc3050c20679d83
SHA512

52a24032e70c00461694e271cd4bbacf0353a4a2c6a8fed15def4fe1fe4f9792dea10a3a4cc9f7c72a0e9e4280220d7ae362fce33703885a1d417979d75f395c
SSDEEP

6144:D0EpI60nbM8uPZy3+8KID4LunuX2Csvo0ZtPZ4mr99uXDgXyXHS:4E+60nbnuPL5X2NVrZhrz8HS

Score

10^/10

stealc vidar 3c43beec65deb206d81f3c6b8d956f18 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20240419-en

stealc vidar 3c43beec65deb206d81f3c6b8d956f18 stealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

stealc

rc4.plain

Extracted

Family

vidar

Version

9.5

Botnet

3c43beec65deb206d81f3c6b8d956f18

C2

https://steamcommunity.com/profiles/76561199681720597

https://t.me/talmatin

Attributes

profile_id_v2
3c43beec65deb206d81f3c6b8d956f18
user_agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 OPR/101.0.0.0

Targets

- Target
  
  file.exe
- Size
  
  409KB
- MD5
  
  5e32f62d26b4476c6862785b9d6b5db3
- SHA1
  
  8fc02bcd0def2535b64690e5a5ad4932bc92a398
- SHA256
  
  74375fb2d74b7174b1444727d6bd1534918dce2deffdf037cfc3050c20679d83
- SHA512
  
  52a24032e70c00461694e271cd4bbacf0353a4a2c6a8fed15def4fe1fe4f9792dea10a3a4cc9f7c72a0e9e4280220d7ae362fce33703885a1d417979d75f395c
- SSDEEP
  
  6144:D0EpI60nbM8uPZy3+8KID4LunuX2Csvo0ZtPZ4mr99uXDgXyXHS:4E+60nbnuPL5X2NVrZhrz8HS
Score

10^/10

stealc vidar 3c43beec65deb206d81f3c6b8d956f18 stealer
- Detect Vidar Stealer
  stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

stealcvidar3c43beec65deb206d81f3c6b8d956f18stealer

© 2018-2025

Terms | Privacy