Overview

overview

10

Static

static

3

9a55faec75...c7.exe

windows7-x64

10

9a55faec75...c7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9a55faec755f08d982ab8602bf4a6d22f78603658bd93904bfce769ddb9bf5c7

  • Size

    704KB

  • Sample

    241121-m26h1s1cna

  • MD5

    ae721f6a78bdd19999a514e3f1ba8053

  • SHA1

    335a17664b77c110da2d5ff2edebb557b1fc2032

  • SHA256

    9a55faec755f08d982ab8602bf4a6d22f78603658bd93904bfce769ddb9bf5c7

  • SHA512

    8f4795aa0916ae597b1e4078d02dcfc7bbfd2b9502bf32352400ae59a150943abbcb27924b4979035dbef045fc471c72a51762450a93240d517b449edee787de

  • SSDEEP

    12288:jEHZv+b5FE1wJRh8K85GzKbppzBfgPqGFJeIN7EW3p6NtxXXXGNXZ6:jWZm9+c380zERWJeFWZ6PhX2/6

Score
10/10
stealclogsdillerdiscoverystealer

Malware Config

Extracted

Family

stealc

Botnet

LogsDiller

C2

http://77.83.175.105

Attributes
  • url_path

    /18a9a962225b1ffb.php

Targets

    • Target

      9a55faec755f08d982ab8602bf4a6d22f78603658bd93904bfce769ddb9bf5c7

    • Size

      704KB

    • MD5

      ae721f6a78bdd19999a514e3f1ba8053

    • SHA1

      335a17664b77c110da2d5ff2edebb557b1fc2032

    • SHA256

      9a55faec755f08d982ab8602bf4a6d22f78603658bd93904bfce769ddb9bf5c7

    • SHA512

      8f4795aa0916ae597b1e4078d02dcfc7bbfd2b9502bf32352400ae59a150943abbcb27924b4979035dbef045fc471c72a51762450a93240d517b449edee787de

    • SSDEEP

      12288:jEHZv+b5FE1wJRh8K85GzKbppzBfgPqGFJeIN7EW3p6NtxXXXGNXZ6:jWZm9+c380zERWJeFWZ6PhX2/6

    Score
    10/10
    stealclogsdillerdiscoverystealer

    • Stealc

      Stealc is an infostealer written in C++.

      stealerstealc

    • Stealc family

      stealc

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks