stealc | f6b9b4d109149a7788c23795978cb0a581e2c3c82c67b6df87e5939f148f9972 | Triage

Sharing

General

Target

f6b9b4d109149a7788c23795978cb0a581e2c3c82c67b6df87e5939f148f9972.exe
Size

296KB
Sample

240819-cskj3sselq
MD5

945a7cd9f48b9258a0d6a66f3e53e995
SHA1

731e7a27e0eb01010c7c6e98d1cdbc572bbd59e4
SHA256

f6b9b4d109149a7788c23795978cb0a581e2c3c82c67b6df87e5939f148f9972
SHA512

9e341dc9f54bb23ab32888c33153eae79d4e04f55a220bce517afdd237ed487d744d39137cb39ffdba0e1829a4772bccfb152cb76c8847956363ec7f080c8707
SSDEEP

3072:O3xF1vhTaXLw1jIgGPSv9IjrGuV+P46YgWRgZO65AKk0hEl:olhTa7ajTGPRrGuEP46Y35mKl

Score

10^/10

stealc default discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default

C2

http://62.204.41.151

Attributes

url_path
/edd20096ecef326d.php

Targets

- Target
  
  f6b9b4d109149a7788c23795978cb0a581e2c3c82c67b6df87e5939f148f9972.exe
- Size
  
  296KB
- MD5
  
  945a7cd9f48b9258a0d6a66f3e53e995
- SHA1
  
  731e7a27e0eb01010c7c6e98d1cdbc572bbd59e4
- SHA256
  
  f6b9b4d109149a7788c23795978cb0a581e2c3c82c67b6df87e5939f148f9972
- SHA512
  
  9e341dc9f54bb23ab32888c33153eae79d4e04f55a220bce517afdd237ed487d744d39137cb39ffdba0e1829a4772bccfb152cb76c8847956363ec7f080c8707
- SSDEEP
  
  3072:O3xF1vhTaXLw1jIgGPSv9IjrGuV+P46YgWRgZO65AKk0hEl:olhTa7ajTGPRrGuEP46Y35mKl
Score

10^/10

stealc default discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdefaultdiscoverystealer

behavioral2

stealcdefaultdiscoverystealer