stealc | 3e69f19a21cc28d30e419c05f46e759f33d90315ffb4a7a2e123488df96edd75 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

dridex

windows10-1703-x64

Sharing

General

Target

3e69f19a21cc28d30e419c05f46e759f33d90315ffb4a7a2e123488df96edd75
Size

236KB
Sample

231015-zjvp1scc32
MD5

d88f9cc54c1847d3bb34dc15a2ad14fb
SHA1

71fbc184b731aa6040355979723cc87499f4ff18
SHA256

3e69f19a21cc28d30e419c05f46e759f33d90315ffb4a7a2e123488df96edd75
SHA512

fdeb2ea78e49dc2fe7413004d61eb641577cdf5b3ea3d54a1fd991d4196e387f5786f2395a20fb2ce757f05671d263c01d7516ff88f8635ff69f4bea76b00010
SSDEEP

3072:LsuNZhUNL2D6swCbK6kYHaHWOaVIr2RP86T5mlRx3Gmo:AuNZiNLu6Qk/CZRUNlRx

Score

10^/10

stealc discovery spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3e69f19a21cc28d30e419c05f46e759f33d90315ffb4a7a2e123488df96edd75.exe

Resource

win10-20230915-en

stealc discovery spyware stealer

windows10-1703-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

stealc

C2

http://elijahdiego.top

Attributes

url_path
/e9c345fc99a4e67e.php

rc4.plain

1
7212876762257503138984994561

Targets

- Target
  
  3e69f19a21cc28d30e419c05f46e759f33d90315ffb4a7a2e123488df96edd75
- Size
  
  236KB
- MD5
  
  d88f9cc54c1847d3bb34dc15a2ad14fb
- SHA1
  
  71fbc184b731aa6040355979723cc87499f4ff18
- SHA256
  
  3e69f19a21cc28d30e419c05f46e759f33d90315ffb4a7a2e123488df96edd75
- SHA512
  
  fdeb2ea78e49dc2fe7413004d61eb641577cdf5b3ea3d54a1fd991d4196e387f5786f2395a20fb2ce757f05671d263c01d7516ff88f8635ff69f4bea76b00010
- SSDEEP
  
  3072:LsuNZhUNL2D6swCbK6kYHaHWOaVIr2RP86T5mlRx3Gmo:AuNZiNLu6Qk/CZRUNlRx
Score

10^/10

stealc discovery spyware stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Downloads MZ/PE file
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdiscoveryspywarestealer

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.