General

  • Target

    1084cb0ee42385f1e11ac522ddcbb3e8.bin

  • Size

    541KB

  • Sample

    241109-bddbsateqd

  • MD5

    779deca775026c78d4c2baadd2d3d479

  • SHA1

    511099e5487698afdadda2f7e91acc6feaf0f9c3

  • SHA256

    3b2f659664bbc483426bcdb3d4d2c2dac84b853f75eb13ece882caa375c324d5

  • SHA512

    7cf0e0c33cd21e8480ec3ed9f00b9b5fa3c6fc4391bafd2eafb3d58a6fc12dbfdb844c08d3f472914e2f405f8d56452bd7b5284e00d2752a35e207fc0391b614

  • SSDEEP

    12288:q8ixdBLxgTW1szOo3yOy2rA3VQLnNFEVFbcl1irPhPWKzWY:eN1sCyPs2LN2VFbclQrBl

Malware Config

Extracted

Family

stealc

Botnet

LogsDiller

C2

http://95.215.204.182

Attributes
  • url_path

    /4d3324bde875e159.php

Targets

    • Target

      24b3ce27da78edae630316dc79c7a64d12e6a6dd06643d5141890c6763daa10a.exe

    • Size

      669KB

    • MD5

      1084cb0ee42385f1e11ac522ddcbb3e8

    • SHA1

      d35b54b1d9ae60dc92cf7937fac620a6110de862

    • SHA256

      24b3ce27da78edae630316dc79c7a64d12e6a6dd06643d5141890c6763daa10a

    • SHA512

      709d6076135e25e01f931b73ad6afa21f97465198ba8d9dfabfca9ef27c5dfa2c54e9b71be155bd679eb3e6b9ac280d766dad7e1714f652627ff44856d582fc8

    • SSDEEP

      12288:IsxUU0QmLuZu7jA4HUEtL0mQ+iThJAtoF9Hr86pmuHjykE:j+vfZwiArFBpmuHjyk

    • Stealc

      Stealc is an infostealer written in C++.

    • Stealc family

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks