Static task
static1
Behavioral task
behavioral1
Sample
2025-07-03_729ea0425fc484b90ee6baf29551b2c7_elex_mafia_stealc_tofsee.exe
Resource
win10v2004-20250502-en
Behavioral task
behavioral2
Sample
2025-07-03_729ea0425fc484b90ee6baf29551b2c7_elex_mafia_stealc_tofsee.exe
Resource
win11-20250619-en
General
-
Target
2025-07-03_729ea0425fc484b90ee6baf29551b2c7_elex_mafia_stealc_tofsee
-
Size
712KB
-
MD5
729ea0425fc484b90ee6baf29551b2c7
-
SHA1
bf45229adb2d63c31203fcf0cd3c77605ddf129e
-
SHA256
ad24fd5b98fbb81ae83b8157d5ce77f660feca62e858df2c6a3214a32282ee47
-
SHA512
b360096b29d85ea3d8f57f1f06d3df56d5df9b5304ceb9f53e86c64149228e8d92f9440c24317f640f46668820b981c53ec7dc02224656597e7c2593c3ceaa98
-
SSDEEP
12288:FU5rCOTeiDSyIfI2ddBDSQ4FLENZdCvq5TJLCvY90D8/LVBlVk736Y79GWzNbA:FUQOJDStteFLENnCvq5TJLCvY90D8/L5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2025-07-03_729ea0425fc484b90ee6baf29551b2c7_elex_mafia_stealc_tofsee
Files
-
2025-07-03_729ea0425fc484b90ee6baf29551b2c7_elex_mafia_stealc_tofsee.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 137KB - Virtual size: 136KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 24KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 262KB - Virtual size: 283KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ