stealc | 155d3d31bace783f928837394192493b10fc0910856116b5ecd59a7c1ed03d42 | Triage

Sharing

General

Target

2740-3-0x0000000001100000-0x0000000001799000-memory.dmp
Size

6.6MB
Sample

241012-xhrwmawbmb
MD5

bc64a7fd73ad984a0db9c7fbab127974
SHA1

02f89fc1a774fb78463b1f74cd0da8aa8f1146e2
SHA256

155d3d31bace783f928837394192493b10fc0910856116b5ecd59a7c1ed03d42
SHA512

23ad57ff59145f3d82b5da7ab388694baae9947f6e4601a524a1b2bc5094b2acc81d2969f43715264b1edb91798ab2c6e5caaea5ea7bdd86c71464e3ad7b6839
SSDEEP

98304:7YmBIs47eV93KFfKG89LL7vf8UHdEtKKE98u:ZxcfKG89vDkU9i

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  2740-3-0x0000000001100000-0x0000000001799000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  bc64a7fd73ad984a0db9c7fbab127974
- SHA1
  
  02f89fc1a774fb78463b1f74cd0da8aa8f1146e2
- SHA256
  
  155d3d31bace783f928837394192493b10fc0910856116b5ecd59a7c1ed03d42
- SHA512
  
  23ad57ff59145f3d82b5da7ab388694baae9947f6e4601a524a1b2bc5094b2acc81d2969f43715264b1edb91798ab2c6e5caaea5ea7bdd86c71464e3ad7b6839
- SSDEEP
  
  98304:7YmBIs47eV93KFfKG89LL7vf8UHdEtKKE98u:ZxcfKG89vDkU9i
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer