General
-
Target
virus.zip
-
Size
3.6MB
-
MD5
fe4ff14111a8984d26662416e9611ee3
-
SHA1
0748db31ee7cda96c5944d6ff3e96dcd6f08f65d
-
SHA256
e3c515df9483a0da33748fdd696122328a97fdc8f39d509f6e2f62e068bbb607
-
SHA512
18d79665805ec66077e94f1db72fc01c2006dfcdb91f0a8522da96915e95104ae1cbf9ad35bcd1d70ec6c06f547e2b20d6f3656d31d63b6defaebbcb89b889cc
-
SSDEEP
98304:+kqXf0FlL9nrYAWCLbi6sfLxkuahjCOeX9YG9see5GnRyCAm0makxH131:+kSIlLtzWqZAkuujCPX9YG9he5GnQCA8
Score
10/10
Malware Config
Extracted
Family
stealerium
C2
https://api.telegram.org/bot8069076644:AAFfDEdqiBbvc_SCYskJFW3YjC9t_kBO0wI/sendMessage?chat_id=
Attributes
-
url
https://szurubooru.zulipchat.com/api/v1/messages
Signatures
-
Stealerium family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
virus.zip
-
iOS_UNiX_Bypass.exe
Headers
Sections