stealerium | 5ed737c07527e0a859a8811611e7808e3aa08346cc3c851e359fb2257523c0af | Triage

Submit
Reports

Overview

overview

Static

static

5ed737c075...af.exe

windows7-x64

5ed737c075...af.exe

windows10-2004-x64

Sharing

General

Target

5ed737c07527e0a859a8811611e7808e3aa08346cc3c851e359fb2257523c0af
Size

3.6MB
Sample

241004-2b4ztszcjj
MD5

29a0d5598f2b61f704fe46f5f0ee89a6
SHA1

c4d8084c326b15c25d4187ee6a6c5800fd820937
SHA256

5ed737c07527e0a859a8811611e7808e3aa08346cc3c851e359fb2257523c0af
SHA512

85ed7d2703698dc6e9790fccdf229183942fa5da1da3c22f927a797a65a2746af337251b677552617c6142de1995c524e837e1e311b2e7df43dc21aa07280d92
SSDEEP

98304:wEjdGSi3kqXf0FLYWCLbi6sfLxkuahjCOeX9YG9see5GnRyCAm0makxH13:i3kSILYWqZAkuujCPX9YG9he5GnQCAJS

Score

10^/10

stealerium discovery stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

5ed737c07527e0a859a8811611e7808e3aa08346cc3c851e359fb2257523c0af.exe

Resource

win7-20240903-en

stealerium discovery stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5ed737c07527e0a859a8811611e7808e3aa08346cc3c851e359fb2257523c0af.exe

Resource

win10v2004-20240802-en

stealerium discovery stealer

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

stealerium

C2

https://api.telegram.org/bot

Targets

- Target
  
  5ed737c07527e0a859a8811611e7808e3aa08346cc3c851e359fb2257523c0af
- Size
  
  3.6MB
- MD5
  
  29a0d5598f2b61f704fe46f5f0ee89a6
- SHA1
  
  c4d8084c326b15c25d4187ee6a6c5800fd820937
- SHA256
  
  5ed737c07527e0a859a8811611e7808e3aa08346cc3c851e359fb2257523c0af
- SHA512
  
  85ed7d2703698dc6e9790fccdf229183942fa5da1da3c22f927a797a65a2746af337251b677552617c6142de1995c524e837e1e311b2e7df43dc21aa07280d92
- SSDEEP
  
  98304:wEjdGSi3kqXf0FLYWCLbi6sfLxkuahjCOeX9YG9see5GnRyCAm0makxH13:i3kSILYWqZAkuujCPX9YG9he5GnQCAJS
Score

10^/10

stealerium discovery stealer
- Stealerium
  An open source info stealer written in C# first seen in May 2022.
  stealer stealerium
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealeriumdiscoverystealer

behavioral2

stealeriumdiscoverystealer

© 2018-2024

Terms | Privacy