2025-05-22 (THURSDAY): STEALC V2 INFECTION

NOTES:

• Zip files are password-protected.  Of note, this site has a new password scheme.  For the password, see the "about" page of this website.

REFERENCES:

• https://www.linkedin.com/posts/unit42_lummastealer-stealc-stealcv2-activity-7331388147139788802-G25f/
• https://x.com/Unit42_Intel/status/1925622526819942771
• https://github.com/PaloAltoNetworks/Unit42-timely-threat-intel/blob/main/2025-05-22-campaign-switches-from-Lumma-to-StealC-v2.txt

ASSOCIATED FILES:

• 2025-05-22-IOCs-for-StealC-v2-infection.txt.zip   1.7 kB   (1,656 bytes)
• 2025-05-22-StealCv2-infection.pcap.zip   26.9 MB   (26,914,205 bytes)
• 2025-05-22-malware-and-artifacts-from-StealC-v2-infection.zip   70.5 MB   (70,486,760 bytes)

 

Click here to return to the main page.