stealc | eeac901d785b600135d638832e906a55ef17fa6ae5d2b5384e50bb6ebc265ed5 | Triage

Sharing

General

Target

eeac901d785b600135d638832e906a55ef17fa6ae5d2b5384e50bb6ebc265ed5
Size

274KB
Sample

240825-15979sybjb
MD5

5711dfd20efd357f9f5cf804238a800d
SHA1

521cf76dc3a3e248c47190a3baad0e4769b4fc2b
SHA256

eeac901d785b600135d638832e906a55ef17fa6ae5d2b5384e50bb6ebc265ed5
SHA512

a9770b811da7935cd3c2a89b4bc859230504850a861ae6be33db7f9efe31f588c4d5276dd026370b476284f908201030eb8cef09ea7522415666ca32d815ecc3
SSDEEP

3072:P/SF6jIIh0eXRv79PpFkCuVZzqdRuDohu9kuPnZo1/brH6jI9zMB/mgkWoJ:P/SFuv79MCGj9fnZuHOI9zO/vkWoJ

Score

10^/10

stealc default discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default

C2

http://62.204.41.151

Attributes

url_path
/edd20096ecef326d.php

Targets

- Target
  
  eeac901d785b600135d638832e906a55ef17fa6ae5d2b5384e50bb6ebc265ed5
- Size
  
  274KB
- MD5
  
  5711dfd20efd357f9f5cf804238a800d
- SHA1
  
  521cf76dc3a3e248c47190a3baad0e4769b4fc2b
- SHA256
  
  eeac901d785b600135d638832e906a55ef17fa6ae5d2b5384e50bb6ebc265ed5
- SHA512
  
  a9770b811da7935cd3c2a89b4bc859230504850a861ae6be33db7f9efe31f588c4d5276dd026370b476284f908201030eb8cef09ea7522415666ca32d815ecc3
- SSDEEP
  
  3072:P/SF6jIIh0eXRv79PpFkCuVZzqdRuDohu9kuPnZo1/brH6jI9zMB/mgkWoJ:P/SFuv79MCGj9fnZuHOI9zO/vkWoJ
Score

10^/10

stealc default discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdefaultdiscoverystealer

behavioral2

stealcdefaultdiscoverystealer