stealc | 90afb5f4fd33d6ffe0fa15f55b32010b7e7d54d709d614116d9cf80aa2031abd | Triage

Sharing

General

Target

2080-3-0x0000000000F10000-0x00000000015C9000-memory.dmp
Size

6.7MB
Sample

241028-yqagzswdjj
MD5

348e3641a7547b3e1381b143ab9bc915
SHA1

2c4716ee729224dab32587feee0172ff7dd1aad6
SHA256

90afb5f4fd33d6ffe0fa15f55b32010b7e7d54d709d614116d9cf80aa2031abd
SHA512

d096b52e2b00e2b50487a500286ec2f8432727850582cc2ffde39715d6c9bf51023c599e374aaa0f55ddae7215d3273642d2506b91d0f5d0ef6d529519ad782a
SSDEEP

98304:5D/4wJFkJvv3cHsPKbrpqMGl46xlRM3/jlqoo4Wbl:x43JPKbVq46xjCnoj

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  2080-3-0x0000000000F10000-0x00000000015C9000-memory.dmp
- Size
  
  6.7MB
- MD5
  
  348e3641a7547b3e1381b143ab9bc915
- SHA1
  
  2c4716ee729224dab32587feee0172ff7dd1aad6
- SHA256
  
  90afb5f4fd33d6ffe0fa15f55b32010b7e7d54d709d614116d9cf80aa2031abd
- SHA512
  
  d096b52e2b00e2b50487a500286ec2f8432727850582cc2ffde39715d6c9bf51023c599e374aaa0f55ddae7215d3273642d2506b91d0f5d0ef6d529519ad782a
- SSDEEP
  
  98304:5D/4wJFkJvv3cHsPKbrpqMGl46xlRM3/jlqoo4Wbl:x43JPKbVq46xjCnoj
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer