General
-
Target
hijackloader_stealc_new_hash.exe
-
Size
922KB
-
Sample
240619-zpdnpawalj
-
MD5
4081d00fabf6ba8e9eb58202ea053735
-
SHA1
22afaf01961b36e741d104bd3b96ce8df4fbf519
-
SHA256
ef62979af506ec3ac2c176bc667465940ca4a1e4f8229e0bc992fec715d43ae8
-
SHA512
1434efa23afd3cb95d0a55a17b246cbee0179072660ce0458701cf9b3b8075217b0864be09a2bbc428c2b9f2253cace6361f874ad8f1d2f472f9f34bd0bc4eda
-
SSDEEP
24576:e8inyEBCZN5hoVlnJXzJ/SEVSoMAALia4:DgABuxF/SRF4
Behavioral task
behavioral1
Sample
hijackloader_stealc_new_hash.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
stealc
cozy15
http://193.163.7.88
-
url_path
/a69d09b357e06b52.php
Targets
-
-
Target
hijackloader_stealc_new_hash.exe
-
Size
922KB
-
MD5
4081d00fabf6ba8e9eb58202ea053735
-
SHA1
22afaf01961b36e741d104bd3b96ce8df4fbf519
-
SHA256
ef62979af506ec3ac2c176bc667465940ca4a1e4f8229e0bc992fec715d43ae8
-
SHA512
1434efa23afd3cb95d0a55a17b246cbee0179072660ce0458701cf9b3b8075217b0864be09a2bbc428c2b9f2253cace6361f874ad8f1d2f472f9f34bd0bc4eda
-
SSDEEP
24576:e8inyEBCZN5hoVlnJXzJ/SEVSoMAALia4:DgABuxF/SRF4
Score10/10-
Detects HijackLoader (aka IDAT Loader)
-
Deletes itself
-
Suspicious use of SetThreadContext
-