stealc | 81bd47d5a06c9716d296d382861ffcf568a74a36c0917f53733283520f925717 | Triage

Sharing

General

Target

81bd47d5a06c9716d296d382861ffcf568a74a36c0917f53733283520f925717
Size

288KB
Sample

240820-wp32sszdqp
MD5

d38be2b09f20de4bfb50b3ac1311c828
SHA1

7810a887d38b528a4f0f9e535df2524b2c63220a
SHA256

81bd47d5a06c9716d296d382861ffcf568a74a36c0917f53733283520f925717
SHA512

f5f11d582135aff88e8426290d9c134c92a1692b63779fe287524f03fc0290c2015a85a7d080d84e4f471fa94ff4cd2708f87ba2754dfece87361b2d43089e5e
SSDEEP

3072:v2ruyDVfkhoaaXqHjeA4QQVQ8fO3lratz5Hpv4ei:urvx4VaujB4zVe3dq6

Score

10^/10

stealc default discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default

C2

http://62.204.41.151

Attributes

url_path
/edd20096ecef326d.php

Targets

- Target
  
  81bd47d5a06c9716d296d382861ffcf568a74a36c0917f53733283520f925717
- Size
  
  288KB
- MD5
  
  d38be2b09f20de4bfb50b3ac1311c828
- SHA1
  
  7810a887d38b528a4f0f9e535df2524b2c63220a
- SHA256
  
  81bd47d5a06c9716d296d382861ffcf568a74a36c0917f53733283520f925717
- SHA512
  
  f5f11d582135aff88e8426290d9c134c92a1692b63779fe287524f03fc0290c2015a85a7d080d84e4f471fa94ff4cd2708f87ba2754dfece87361b2d43089e5e
- SSDEEP
  
  3072:v2ruyDVfkhoaaXqHjeA4QQVQ8fO3lratz5Hpv4ei:urvx4VaujB4zVe3dq6
Score

10^/10

stealc default discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdefaultdiscoverystealer

behavioral2

stealcdefaultdiscoverystealer