stealc | ea77b1a864772aed7bd7dbe5224c5d0ba605775645853f27217ea1d06d17dfca | Triage

Sharing

General

Target

2504-3-0x00000000012D0000-0x000000000198E000-memory.dmp
Size

6.7MB
Sample

241028-wl132asnbz
MD5

40fadb9d4197593b507e2e904acbd740
SHA1

b4d8124cbf95f2d8f9c4b3c158b72ad44522a2c9
SHA256

ea77b1a864772aed7bd7dbe5224c5d0ba605775645853f27217ea1d06d17dfca
SHA512

e4b97185b9121353f8eba6d84eef0313d4658f700880da71673ca3d65625565cc128cdd512f9969685a69719e551f74c9854668151cf8341878129f4eed83dee
SSDEEP

98304:DjutxmI8j/S6XTiaYk9ZOlsvSTibARswrPo:WteTm5k9M4STi8q0

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  2504-3-0x00000000012D0000-0x000000000198E000-memory.dmp
- Size
  
  6.7MB
- MD5
  
  40fadb9d4197593b507e2e904acbd740
- SHA1
  
  b4d8124cbf95f2d8f9c4b3c158b72ad44522a2c9
- SHA256
  
  ea77b1a864772aed7bd7dbe5224c5d0ba605775645853f27217ea1d06d17dfca
- SHA512
  
  e4b97185b9121353f8eba6d84eef0313d4658f700880da71673ca3d65625565cc128cdd512f9969685a69719e551f74c9854668151cf8341878129f4eed83dee
- SSDEEP
  
  98304:DjutxmI8j/S6XTiaYk9ZOlsvSTibARswrPo:WteTm5k9M4STi8q0
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer