General

  • Target

    2936-3-0x0000000001270000-0x00000000018ED000-memory.dmp

  • Size

    6.5MB

  • Sample

    241002-vnhh2a1dna

  • MD5

    8884d156f27ccab4743b12f1dc5bd014

  • SHA1

    0a9e2c5fb17ab6c4782de07096fa15660e098f10

  • SHA256

    b22b63f6cbe25743c70f12550275de703d4ea16110d66d1b562cc85f7c5d4052

  • SHA512

    924c1a2fcaf538633ffa564c49f36309581c1fceff75ec8952f83e50635bfe5bf84b97b7e7bd12044a7477089fa9b299c5f42d0c38c98032dea4687b01d572e2

  • SSDEEP

    98304:4thi1DcAKRBr9K+stcqXFduXzI/ndQspRDFx:kih9pFQYD

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes
  • url_path

    /e2b1563c6670f193.php

Targets

    • Target

      2936-3-0x0000000001270000-0x00000000018ED000-memory.dmp

    • Size

      6.5MB

    • MD5

      8884d156f27ccab4743b12f1dc5bd014

    • SHA1

      0a9e2c5fb17ab6c4782de07096fa15660e098f10

    • SHA256

      b22b63f6cbe25743c70f12550275de703d4ea16110d66d1b562cc85f7c5d4052

    • SHA512

      924c1a2fcaf538633ffa564c49f36309581c1fceff75ec8952f83e50635bfe5bf84b97b7e7bd12044a7477089fa9b299c5f42d0c38c98032dea4687b01d572e2

    • SSDEEP

      98304:4thi1DcAKRBr9K+stcqXFduXzI/ndQspRDFx:kih9pFQYD

MITRE ATT&CK Enterprise v15

Tasks