stealc | 13611a6e2c6f7d37c9d18a6c016819bc2ba72ab6b1a67e9ac8330944a5bdd758 | Triage

Sharing

General

Target

2112-3-0x0000000000010000-0x00000000006A5000-memory.dmp
Size

6.6MB
Sample

241023-vfqvfasglk
MD5

5abbf65cd12c775b140845b48d6677e9
SHA1

fb1c04e460fd6c0590ed82894aef1a7fbaec1075
SHA256

13611a6e2c6f7d37c9d18a6c016819bc2ba72ab6b1a67e9ac8330944a5bdd758
SHA512

b89abab00e4e3d8d8fd71187ab20697ea936c378c455477117343f41cdfec3ca18451c65ffd67893bd93341f3b25a9c6ceddb3cd890f8d5e05b81bcb20f53e0b
SSDEEP

98304:H3Ecavg6gTBQOyNGkvGU89h6cwhR7/dLWMXpETlQ1r2gZ:0c3XyNGkO/OPLdLWMXpET6rP

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  2112-3-0x0000000000010000-0x00000000006A5000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  5abbf65cd12c775b140845b48d6677e9
- SHA1
  
  fb1c04e460fd6c0590ed82894aef1a7fbaec1075
- SHA256
  
  13611a6e2c6f7d37c9d18a6c016819bc2ba72ab6b1a67e9ac8330944a5bdd758
- SHA512
  
  b89abab00e4e3d8d8fd71187ab20697ea936c378c455477117343f41cdfec3ca18451c65ffd67893bd93341f3b25a9c6ceddb3cd890f8d5e05b81bcb20f53e0b
- SSDEEP
  
  98304:H3Ecavg6gTBQOyNGkvGU89h6cwhR7/dLWMXpETlQ1r2gZ:0c3XyNGkO/OPLdLWMXpET6rP
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer