stealc | e029649c27b530cde29120d4efbef76d537ead6617fa0c05f11211e5bd234562 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

joom.exe
Size

244KB
Sample

240726-s1za7szerh
MD5

ccba0064d8fb013b5ba0d8738afa7d77
SHA1

4646e6739bd8d39e822f12e55b3c288623898fd4
SHA256

e029649c27b530cde29120d4efbef76d537ead6617fa0c05f11211e5bd234562
SHA512

d8425c57225f34caa4a5d12525c4fd6bdfa81370cb362ba1923bdad5627ac9864e90c7920d9afb0fa41dd1bf360083f58d00cb4f1a7e18bdd58ac53977c68cf5
SSDEEP

3072:rX/ktJ6usP0xYznvePVoaXxTnaUikbhHB6vjRQD/PXUyOfwlxms:j/wJ6us/v4VhpaUbRB61QLvUnKU

Score

10^/10

stealc sila discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

sila

C2

http://85.28.47.31

Attributes

url_path
/5499d72b3a3e55be.php

Targets

- Target
  
  joom.exe
- Size
  
  244KB
- MD5
  
  ccba0064d8fb013b5ba0d8738afa7d77
- SHA1
  
  4646e6739bd8d39e822f12e55b3c288623898fd4
- SHA256
  
  e029649c27b530cde29120d4efbef76d537ead6617fa0c05f11211e5bd234562
- SHA512
  
  d8425c57225f34caa4a5d12525c4fd6bdfa81370cb362ba1923bdad5627ac9864e90c7920d9afb0fa41dd1bf360083f58d00cb4f1a7e18bdd58ac53977c68cf5
- SSDEEP
  
  3072:rX/ktJ6usP0xYznvePVoaXxTnaUikbhHB6vjRQD/PXUyOfwlxms:j/wJ6us/v4VhpaUbRB61QLvUnKU
Score

10^/10

stealc sila discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcsiladiscoverystealer

behavioral2

stealcsiladiscoverystealer

behavioral3

stealcsiladiscoverystealer