stealc | 8b2ab112a5e29f262f7d99155acc58b11537792a68e1e5ae4f9b6ae346bd5573 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6219d56de9c601125b60826130644af5.exe
Size

306KB
Sample

240819-hvcj5stdmm
MD5

6219d56de9c601125b60826130644af5
SHA1

cfc70205288ed5ab15ff373a8f2d66e50a826af8
SHA256

8b2ab112a5e29f262f7d99155acc58b11537792a68e1e5ae4f9b6ae346bd5573
SHA512

532c0dc470506fa41cdc1c1785e371abc5277b78b831de5ef595b6829795b0101ec0629ffdd5f2b1c067511a6045c63f1dde86b04d4be9c40425204006e37a46
SSDEEP

3072:IEei0hRdTGffhhSrgf2R7lTZIFiSEUFuAPcaNx4sNLOwU6s9PFz5ZTfCT7LRPmPe:ijTGnWaWbSduu4sxm6cpKrx08

Score

10^/10

stealc default discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default

C2

http://62.204.41.151

Attributes

url_path
/edd20096ecef326d.php

Targets

- Target
  
  6219d56de9c601125b60826130644af5.exe
- Size
  
  306KB
- MD5
  
  6219d56de9c601125b60826130644af5
- SHA1
  
  cfc70205288ed5ab15ff373a8f2d66e50a826af8
- SHA256
  
  8b2ab112a5e29f262f7d99155acc58b11537792a68e1e5ae4f9b6ae346bd5573
- SHA512
  
  532c0dc470506fa41cdc1c1785e371abc5277b78b831de5ef595b6829795b0101ec0629ffdd5f2b1c067511a6045c63f1dde86b04d4be9c40425204006e37a46
- SSDEEP
  
  3072:IEei0hRdTGffhhSrgf2R7lTZIFiSEUFuAPcaNx4sNLOwU6s9PFz5ZTfCT7LRPmPe:ijTGnWaWbSduu4sxm6cpKrx08
Score

10^/10

stealc default discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdefaultdiscoverystealer

behavioral2

stealcdefaultdiscoverystealer