stealc | 76e62bb8731ad055f87c8b163238d7ce00bc6f3db3638ed57890362fcab01709 | Triage

Sharing

General

Target

2848-3-0x0000000000C10000-0x00000000012A8000-memory.dmp
Size

6.6MB
Sample

241023-tgr88aydph
MD5

6a91700ec2ae1c46395a9c51ca349b86
SHA1

68a375c10272ba638799b3431af1aabb7c1c9d58
SHA256

76e62bb8731ad055f87c8b163238d7ce00bc6f3db3638ed57890362fcab01709
SHA512

87ebe8ee7f5bdd820d37bde3d3314b452fef775bc26a3d67b6d059147f9c7cdcaaba8704f977a9d29bf3234260a6621ad90b866be5bd0062f37c54376cb9bd89
SSDEEP

98304:wquyuQINhIzbM1fe6nZLPaAVzkfKKM/ftyGi4cZ15cY+9:ky8ZL3kfqftyN3r5pw

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  2848-3-0x0000000000C10000-0x00000000012A8000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  6a91700ec2ae1c46395a9c51ca349b86
- SHA1
  
  68a375c10272ba638799b3431af1aabb7c1c9d58
- SHA256
  
  76e62bb8731ad055f87c8b163238d7ce00bc6f3db3638ed57890362fcab01709
- SHA512
  
  87ebe8ee7f5bdd820d37bde3d3314b452fef775bc26a3d67b6d059147f9c7cdcaaba8704f977a9d29bf3234260a6621ad90b866be5bd0062f37c54376cb9bd89
- SSDEEP
  
  98304:wquyuQINhIzbM1fe6nZLPaAVzkfKKM/ftyGi4cZ15cY+9:ky8ZL3kfqftyN3r5pw
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer