Overview

overview

10

Static

static

3

Stealerium.zip

windows7-x64

1

Stealerium.zip

windows10-2004-x64

10

Resubmissions

13-01-2025 00:21

250113-anj2mswnfw 3

09-01-2025 07:24

250109-h8ftqasrd1 10

Analysis

  • max time kernel
    359s
  • max time network
    360s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09-01-2025 07:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Stealerium.zip

  • Size

    5.9MB

  • MD5

    e2e609d8870d6257945230e08ca4f62f

  • SHA1

    338f787fc2eb8d8a33b7fd0e73f247743c497b9d

  • SHA256

    848d8ab365cfa9c087c80b87538a2c86921a16e886f0b3d32405cbe69f4d7f53

  • SHA512

    d10daa0212337d10b7ede25e1238dc5f77e93a0b9eb048a4a80c4bd1dc42af2dfdf7e0e8951486db6f738980e4a13802243a3c60696007104ef28f7f58002183

  • SSDEEP

    98304:nR9fzGqzRjbT+yYTNWdDAkJNam4FFYGzYqLeB50CcOq0C2xJ9K8YR0fXgnGagsmx:PfzG6jbT+FUiWNaDFFYGEqLeBqCcR0oi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\Stealerium.zip"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:3020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads