stealc | 00a10d07277a7230bf72e4a77a4fd0a7b7b8d031e671e16432f7838676cb2456 | Triage

Sharing

General

Target

00a10d07277a7230bf72e4a77a4fd0a7b7b8d031e671e16432f7838676cb2456
Size

678KB
Sample

240722-vzpfqaygmr
MD5

686443cb145ea6d01fbe1e0e329a6ba3
SHA1

949d2881fd068dbe8da7bec7910d27e81daf83cb
SHA256

00a10d07277a7230bf72e4a77a4fd0a7b7b8d031e671e16432f7838676cb2456
SHA512

f8b3cd2d58a25eeecfc96b7fd71e2d0b8a0dc866eaa8fc28b92498bc300957b9a70f12607c0e532d331232772cb243b82bf82b966cd7f1a3a63ef92d7fe1c67e
SSDEEP

12288:+KMxo7YNQB2YcKify3idXmen/UmM6+6pTwUgh/r/0zGg1XZ:/MKwQ8siK3hwC96c/OG

Score

10^/10

stealc sila stealer

Malware Config

Extracted

Family

stealc

Botnet

sila

C2

http://85.28.47.31

Attributes

url_path
/5499d72b3a3e55be.php

Targets

- Target
  
  00a10d07277a7230bf72e4a77a4fd0a7b7b8d031e671e16432f7838676cb2456
- Size
  
  678KB
- MD5
  
  686443cb145ea6d01fbe1e0e329a6ba3
- SHA1
  
  949d2881fd068dbe8da7bec7910d27e81daf83cb
- SHA256
  
  00a10d07277a7230bf72e4a77a4fd0a7b7b8d031e671e16432f7838676cb2456
- SHA512
  
  f8b3cd2d58a25eeecfc96b7fd71e2d0b8a0dc866eaa8fc28b92498bc300957b9a70f12607c0e532d331232772cb243b82bf82b966cd7f1a3a63ef92d7fe1c67e
- SSDEEP
  
  12288:+KMxo7YNQB2YcKify3idXmen/UmM6+6pTwUgh/r/0zGg1XZ:/MKwQ8siK3hwC96c/OG
Score

10^/10

stealc sila stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

stealcsilastealer

behavioral2

stealcsilastealer