stealc | 23d6023796be3dc08424b7839bf412e37519203ca1933434da296901e125ab37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23d6023796be3dc08424b7839bf412e37519203ca1933434da296901e125ab37
Size

294KB
Sample

240820-tr5x3a1gqh
MD5

6dadeb6017095d87d5ccfe1ff56a440a
SHA1

7a0117273fd3adf3bf21359cc9bfaf8215e7f05d
SHA256

23d6023796be3dc08424b7839bf412e37519203ca1933434da296901e125ab37
SHA512

01626cb494c2831aa5cb9fd75415f1d7f5c457a517304722f1aa80cb5eebf4ea4c888f65c1f0628c5286c0b569e430408984d9b176de15a8b132e7d79e45c4f2
SSDEEP

3072:95t30hVXtoSsPAJl9lPoqvnrrcx/CRVnwSz5i7prVkKB:zdwmSsPA/SK3nm3

Score

10^/10

stealc default discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default

C2

http://62.204.41.151

Attributes

url_path
/edd20096ecef326d.php

Targets

- Target
  
  23d6023796be3dc08424b7839bf412e37519203ca1933434da296901e125ab37
- Size
  
  294KB
- MD5
  
  6dadeb6017095d87d5ccfe1ff56a440a
- SHA1
  
  7a0117273fd3adf3bf21359cc9bfaf8215e7f05d
- SHA256
  
  23d6023796be3dc08424b7839bf412e37519203ca1933434da296901e125ab37
- SHA512
  
  01626cb494c2831aa5cb9fd75415f1d7f5c457a517304722f1aa80cb5eebf4ea4c888f65c1f0628c5286c0b569e430408984d9b176de15a8b132e7d79e45c4f2
- SSDEEP
  
  3072:95t30hVXtoSsPAJl9lPoqvnrrcx/CRVnwSz5i7prVkKB:zdwmSsPA/SK3nm3
Score

10^/10

stealc default discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdefaultdiscoverystealer

behavioral2

stealcdefaultdiscoverystealer