stealerium | 7c18664cae1d34c9df92b872528714e34cd42e685fb4672c14b9d2434727fb7d | Triage

Submit
Reports

Overview

overview

Static

static

7c18664cae...cs.exe

windows7-x64

7c18664cae...cs.exe

windows10-2004-x64

Sharing

General

Target

7c18664cae1d34c9df92b872528714e34cd42e685fb4672c14b9d2434727fb7d_NeikiAnalytics.exe
Size

1.6MB
Sample

240622-dxnyqswajd
MD5

10084c138c40698d6b0eaf6987f1a230
SHA1

5d424dab4b30e265385d83d0e16ee9a177847731
SHA256

7c18664cae1d34c9df92b872528714e34cd42e685fb4672c14b9d2434727fb7d
SHA512

5b705f854c2068d89d2368b977a7c1c97572d88d1ee45e98491329846c0e75b095878329b9837f08d8adfa4df1e381a66399efb2698d67476de413aaf8dd8312
SSDEEP

49152:fkTq24GjdGSiqkqXfd+/9AqYanieKdsf:f1EjdGSiqkqXf0FLYW

Score

10^/10

stealerium stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

7c18664cae1d34c9df92b872528714e34cd42e685fb4672c14b9d2434727fb7d_NeikiAnalytics.exe

Resource

win7-20240220-en

stealerium stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

7c18664cae1d34c9df92b872528714e34cd42e685fb4672c14b9d2434727fb7d_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

stealerium stealer

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Extracted

Family

stealerium

C2

https://discord.com/api/webhooks/1251920063523717201/vlYbPgUgppYwKZYoOd7qZMii9bCeGczxcWKoSZM4QDgJcWoum0FYmfed3wP8FNtixrZ2

Targets

- Target
  
  7c18664cae1d34c9df92b872528714e34cd42e685fb4672c14b9d2434727fb7d_NeikiAnalytics.exe
- Size
  
  1.6MB
- MD5
  
  10084c138c40698d6b0eaf6987f1a230
- SHA1
  
  5d424dab4b30e265385d83d0e16ee9a177847731
- SHA256
  
  7c18664cae1d34c9df92b872528714e34cd42e685fb4672c14b9d2434727fb7d
- SHA512
  
  5b705f854c2068d89d2368b977a7c1c97572d88d1ee45e98491329846c0e75b095878329b9837f08d8adfa4df1e381a66399efb2698d67476de413aaf8dd8312
- SSDEEP
  
  49152:fkTq24GjdGSiqkqXfd+/9AqYanieKdsf:f1EjdGSiqkqXf0FLYW
Score

10^/10

stealerium stealer
- Stealerium
  An open source info stealer written in C# first seen in May 2022.
  stealer stealerium
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

stealeriumstealer

behavioral2

stealeriumstealer

© 2018-2024

Terms | Privacy