stealc | 5d7f8b38a4d31ff73c36b0d3d0bbd52b0de8574127bfdc22bae0b84e440c595b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ebfe778f3ce4565a576384202562eb9.exe
Size

279KB
Sample

240914-2w7apa1hkg
MD5

5ebfe778f3ce4565a576384202562eb9
SHA1

0551919df262417d935da2c4d8c98bc2535c4d99
SHA256

5d7f8b38a4d31ff73c36b0d3d0bbd52b0de8574127bfdc22bae0b84e440c595b
SHA512

d2643424eb11ad773477680d4a728055008842bc65ddb7412b8824023b90b640044e71a06cb4fe304d9e89fbae00bcaf37eb4c1d8fce146751d2bb380739fabf
SSDEEP

6144:5L4rmC68GETrMw94r+V5yClebRSS6nSy:5cr768n9DTyCY4S6nSy

Score

10^/10

stealc default2_cap discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default2_cap

C2

http://62.204.41.159

Attributes

url_path
/edd20096ecef326d.php

Targets

- Target
  
  5ebfe778f3ce4565a576384202562eb9.exe
- Size
  
  279KB
- MD5
  
  5ebfe778f3ce4565a576384202562eb9
- SHA1
  
  0551919df262417d935da2c4d8c98bc2535c4d99
- SHA256
  
  5d7f8b38a4d31ff73c36b0d3d0bbd52b0de8574127bfdc22bae0b84e440c595b
- SHA512
  
  d2643424eb11ad773477680d4a728055008842bc65ddb7412b8824023b90b640044e71a06cb4fe304d9e89fbae00bcaf37eb4c1d8fce146751d2bb380739fabf
- SSDEEP
  
  6144:5L4rmC68GETrMw94r+V5yClebRSS6nSy:5cr768n9DTyCY4S6nSy
Score

10^/10

stealc default2_cap discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdefault2_capdiscoverystealer

behavioral2

stealcdefault2_capdiscoverystealer