stealc | 0b6ab6bca2e0e91f426ea106ed735e1fa6c789541f553b381fdc92c7bab6b885 | Triage

Sharing

General

Target

0b6ab6bca2e0e91f426ea106ed735e1fa6c789541f553b381fdc92c7bab6b885.exe
Size

1022KB
Sample

240726-bttnps1aqb
MD5

4c50c8c607992bd36449cae47c9adc58
SHA1

803c8cf312b6a518fdb1f1734e896d924adb5302
SHA256

0b6ab6bca2e0e91f426ea106ed735e1fa6c789541f553b381fdc92c7bab6b885
SHA512

2b32fbeb7cca83a02b60a1d96ec3671ec4ed0ad29fb98545f7300e91e315117e3e417a0d002bbc994454b80466a89f8f04225f9ed9c57715d5853450a91b6e2e
SSDEEP

12288:vlMWl/mJZf4DvZ/6kGi8HVf3IpraFDuaT5FqYAd2nTvQ6QuDmwcsH/J:t/mJZU9g1f2raFDs6Q07H/J

Score

10^/10

stealc default discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default

C2

http://147.45.47.71

Attributes

url_path
/eb6f29c6a60b3865.php

Targets

- Target
  
  0b6ab6bca2e0e91f426ea106ed735e1fa6c789541f553b381fdc92c7bab6b885.exe
- Size
  
  1022KB
- MD5
  
  4c50c8c607992bd36449cae47c9adc58
- SHA1
  
  803c8cf312b6a518fdb1f1734e896d924adb5302
- SHA256
  
  0b6ab6bca2e0e91f426ea106ed735e1fa6c789541f553b381fdc92c7bab6b885
- SHA512
  
  2b32fbeb7cca83a02b60a1d96ec3671ec4ed0ad29fb98545f7300e91e315117e3e417a0d002bbc994454b80466a89f8f04225f9ed9c57715d5853450a91b6e2e
- SSDEEP
  
  12288:vlMWl/mJZf4DvZ/6kGi8HVf3IpraFDuaT5FqYAd2nTvQ6QuDmwcsH/J:t/mJZU9g1f2raFDs6Q07H/J
Score

10^/10

stealc default stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdefaultstealer

behavioral2

stealcdefaultdiscoverystealer