stealc | 60315f4c29395ef420f219caf7e1acf9c43f089c6edf033cafff0c65dbe5a39e | Triage

Sharing

General

Target

2956-76-0x0000000000880000-0x0000000000F0B000-memory.dmp
Size

6.5MB
Sample

241028-3m2jhsxqar
MD5

ec9d1786a9773c2a2ef632ca19bef483
SHA1

07b455d30fc3abda21d2b6cc90f19948c92d6bbc
SHA256

60315f4c29395ef420f219caf7e1acf9c43f089c6edf033cafff0c65dbe5a39e
SHA512

b2867afb7dfb08d85053a255c938148be71b96e34d3f18cc0e08f36bcda12661afb42a310398cc5c5967ee8793777bf4acfe67d1335ba313bf54a23bdd9b1e3e
SSDEEP

98304:2YCsS/hKkPtKLx/wwwEJpjF5jUeBhGYQ3RDu99Pj:wskMlLHWPBS99P

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  2956-76-0x0000000000880000-0x0000000000F0B000-memory.dmp
- Size
  
  6.5MB
- MD5
  
  ec9d1786a9773c2a2ef632ca19bef483
- SHA1
  
  07b455d30fc3abda21d2b6cc90f19948c92d6bbc
- SHA256
  
  60315f4c29395ef420f219caf7e1acf9c43f089c6edf033cafff0c65dbe5a39e
- SHA512
  
  b2867afb7dfb08d85053a255c938148be71b96e34d3f18cc0e08f36bcda12661afb42a310398cc5c5967ee8793777bf4acfe67d1335ba313bf54a23bdd9b1e3e
- SSDEEP
  
  98304:2YCsS/hKkPtKLx/wwwEJpjF5jUeBhGYQ3RDu99Pj:wskMlLHWPBS99P
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer