stealc | 23885634bb1e67c595f6bec7115946371c79dec78bbe1ba2ebe33a20bebec3b9 | Triage

Sharing

General

Target

1620-3-0x00000000013C0000-0x0000000001A51000-memory.dmp
Size

6.6MB
Sample

241023-q8wtyatcnb
MD5

d70bb2b030f9301d0a1371ee704066df
SHA1

72315c6675b0047fe55de855bc6e58a9156b6f1e
SHA256

23885634bb1e67c595f6bec7115946371c79dec78bbe1ba2ebe33a20bebec3b9
SHA512

236b18980139c01592835c445e9ad6e8b4304e56b67317c912f1935733b0c9cc0f59bf7c4372a3eb397a512c3a8600a875fa84c071533953dd9dee7d11d76e50
SSDEEP

98304:vvClkrykqSrl3ILxRkUo9ExkmMZGMj/fsVRmJw5yqIU:ylkxzZtmnsfsVRmc

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  1620-3-0x00000000013C0000-0x0000000001A51000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  d70bb2b030f9301d0a1371ee704066df
- SHA1
  
  72315c6675b0047fe55de855bc6e58a9156b6f1e
- SHA256
  
  23885634bb1e67c595f6bec7115946371c79dec78bbe1ba2ebe33a20bebec3b9
- SHA512
  
  236b18980139c01592835c445e9ad6e8b4304e56b67317c912f1935733b0c9cc0f59bf7c4372a3eb397a512c3a8600a875fa84c071533953dd9dee7d11d76e50
- SSDEEP
  
  98304:vvClkrykqSrl3ILxRkUo9ExkmMZGMj/fsVRmJw5yqIU:ylkxzZtmnsfsVRmc
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer