Overview

overview

10

Static

static

3

f28e2ac900...00.exe

windows7-x64

10

f28e2ac900...00.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f28e2ac900ef82c78a0c6628fa094ff52c5a7509eb84d98f58ffe106fd719200

  • Size

    639KB

  • Sample

    241121-yhqt1awjgs

  • MD5

    ff93ed92df73e1d58a601073ca91045e

  • SHA1

    67c651043a8df387d2e22b55b7609b04d86073be

  • SHA256

    f28e2ac900ef82c78a0c6628fa094ff52c5a7509eb84d98f58ffe106fd719200

  • SHA512

    18c6a656270578694ed04b292cbaf860f242f419ebaa9ff55fc930872d9f4d1b45a006ae92a784b533c3028bfe33c5c1cbeba0d2e6e342d0049bb947261bdf23

  • SSDEEP

    12288:hikkxcNc6rAiPcaVSty9hkc3gdgrEZGjRyy53t:hGqNcGdSu3gdfZ+

Score
10/10
stealclogsdiller1discoverystealer

Malware Config

Extracted

Family

stealc

Botnet

LogsDiller1

C2

http://45.88.105.194

Attributes
  • url_path

    /88a55e38bdbf04ae.php

Targets

    • Target

      f28e2ac900ef82c78a0c6628fa094ff52c5a7509eb84d98f58ffe106fd719200

    • Size

      639KB

    • MD5

      ff93ed92df73e1d58a601073ca91045e

    • SHA1

      67c651043a8df387d2e22b55b7609b04d86073be

    • SHA256

      f28e2ac900ef82c78a0c6628fa094ff52c5a7509eb84d98f58ffe106fd719200

    • SHA512

      18c6a656270578694ed04b292cbaf860f242f419ebaa9ff55fc930872d9f4d1b45a006ae92a784b533c3028bfe33c5c1cbeba0d2e6e342d0049bb947261bdf23

    • SSDEEP

      12288:hikkxcNc6rAiPcaVSty9hkc3gdgrEZGjRyy53t:hGqNcGdSu3gdfZ+

    Score
    10/10
    stealclogsdiller1discoverystealer

    • Stealc

      Stealc is an infostealer written in C++.

      stealerstealc

    • Stealc family

      stealc

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks