Overview

overview

10

Static

static

10

build.exe

windows7-x64

10

build.exe

windows10-2004-x64

10

Resubmissions

31/08/2024, 16:29

240831-tzremstfjb 10

12/08/2024, 14:11

240812-rhryqsvarm 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    build.zip

  • Size

    1.5MB

  • Sample

    240831-tzremstfjb

  • MD5

    def4644d803523dee8f5ae7e0f817863

  • SHA1

    a9f90c27fa0f34ed6d53bf0d7acbe802b86519d4

  • SHA256

    fcab46de9f908679cb3d618e2cfb621e62114e5fd58339e112096d9f7e2b0f88

  • SHA512

    da83c7d3115305a23a2e4dcb0b8deb27761e1a79572a16942fa9699126dcf6ade356bec59435a8cee947e2eb0e6080ea090fc451912c6ba4a10c4583b3e143a5

  • SSDEEP

    24576:YqeijWKnamOPvHOaqjVTlSurvSad4IMWcce1gaAvwBfVEjWmq:NdWfmuOaqPHraad4jcc3AifSjY

Score
10/10
stealeriumdiscoverystealer

Malware Config

Extracted

Family

stealerium

C2

https://discord.com/api/webhooks/1272310044310114345/XovSJwd5sMLQ9WJP_wnPvRrjoRQW3rAHVrVHbTRgEdifmYlfIAmCMdk0VqZcOtuLXiTT

Targets

    • Target

      build.exe

    • Size

      1.6MB

    • MD5

      cb367716bd6b45c5b6e95046270cb342

    • SHA1

      e2d15aee96989ee60ddbe618c88b85ec3064b2bd

    • SHA256

      45e46fcb41b84552a0d54e1925f2df1ae3883d2645c8d3b4084546943e81f426

    • SHA512

      2b7906c154a23e32e990f8824d044059e359c230139a3c68513276200fd40744c02e0531fab2fc9c8ff22baf96920878333d1488d7ce9c0896b67d4377920c6a

    • SSDEEP

      49152:vkTq24GjdGSiqkqXfd+/9AqYanieKdsU:v1EjdGSiqkqXf0FLYW

    Score
    10/10
    stealeriumdiscoverystealer

    • Stealerium

      An open source info stealer written in C# first seen in May 2022.

      stealerstealerium

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks