SHA1HighVerifiedSignal 100/100
b9a7c4a302981e7e447dbf451b7a8893efb0c607
Location
PeruFirst Seen
Feb 18, 2025
Last Seen
Feb 21, 2026
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
SHA-1 Hash
SHA-1 file hash associated with malicious samples.
MISP Category
Artifacts Dropped
Hash Algorithm
SHA1
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
6 reports99% confidence
6
Source reports
99%
Confidence score
Category tags
aptbotnetbrowser credential theftchecks-user-inputcommand and controlcredential accesscredential theftcrypto wallet theftcryptocurrency wallet theftdata exfiltrationdata theftdetect-debug-environmentdistributed attacksdumpingfile-hashfinancial data theftindicatorinformation stealer activitylogin credential theftmalicious softwaremalwareoperating systemos credentialos credential dumpingpassword stealingpeexeperuprocess injectionremote servicesresearchedsouth americastealct1003t1003.001t1003.005t1005t1007t1012t1021t1021.001t1027t1033t1046t1055t1056t1057t1069.001t1071t1071.001t1078t1081t1110t1110.001t1486t1496t1499.002t1499.003t1539t1552t1552.001t1552.004t1555t1555.003t1555.004t1555.005t1565tcticaswin32 malwarewindows malware
Activity Timeline
Feb 21Feb 21
Threat Activity Heatmap
· Peak: 2026-02-21LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
6
Reports
First seenFeb 18, 2025
Last seenFeb 21, 2026
Verified IOC
VirusTotal
Not checked
WHOIS
- description
- PE32 executable (GUI) Intel 80386, for MS Windows
- references
- https://bazaar.abuse.ch/export/csv/recent/, https://www.virustotal.com/graph/embed/g996fa7a2cc834565ae5a8b7d58e65ed0ee0ef7c57ef142678c48c8393b493751?theme=light, https://darfe.es/ciberwiki/index.php?title=Stealc
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 1 year ago · Last seen 4 months ago
Appeared in 6 threat reports