stealc | 9d4b9d40f83eec3a35279f1c69c0c8f09d1a68b7c0a81d20a47af1364bdd4fa7 | Triage

Sharing

General

Target

2248-3-0x0000000000AD0000-0x000000000117E000-memory.dmp
Size

6.7MB
Sample

241023-szg1jaxeje
MD5

80985144dc838516b982c71043a191d6
SHA1

28eba03b1fe8e85092d1fb17be57b5b28a0fe43a
SHA256

9d4b9d40f83eec3a35279f1c69c0c8f09d1a68b7c0a81d20a47af1364bdd4fa7
SHA512

ce965274e2ccdf850ce9ed8d9b0268c469f1d24e999a00c758b49214322392ef92b2b01dafec1565801da9c863b30bd5fc4b27c35261d0a80d61278a9952ad46
SSDEEP

98304:aKoQ8nngoNE61Xjpl2AUY18UURZ1u64wktOPRd:ok6/l2AL18UURZ1nTktsR

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  2248-3-0x0000000000AD0000-0x000000000117E000-memory.dmp
- Size
  
  6.7MB
- MD5
  
  80985144dc838516b982c71043a191d6
- SHA1
  
  28eba03b1fe8e85092d1fb17be57b5b28a0fe43a
- SHA256
  
  9d4b9d40f83eec3a35279f1c69c0c8f09d1a68b7c0a81d20a47af1364bdd4fa7
- SHA512
  
  ce965274e2ccdf850ce9ed8d9b0268c469f1d24e999a00c758b49214322392ef92b2b01dafec1565801da9c863b30bd5fc4b27c35261d0a80d61278a9952ad46
- SSDEEP
  
  98304:aKoQ8nngoNE61Xjpl2AUY18UURZ1u64wktOPRd:ok6/l2AL18UURZ1nTktsR
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer