stealc | 2f4a94c609b5763806d189dfa8f08f0ec002ff0b8380c0ed1a76d48c865113b2 | Triage

Sharing

General

Target

1676-168-0x0000000001230000-0x00000000018C7000-memory.dmp
Size

6.6MB
Sample

241028-z8cwhaxgql
MD5

e03b4df29ffa144964b2b2be87cbd7b2
SHA1

dfcdd0e65264571c6ca099d4ca969c361dfebd8e
SHA256

2f4a94c609b5763806d189dfa8f08f0ec002ff0b8380c0ed1a76d48c865113b2
SHA512

fb34130a1ce9d0513e63154f0b5478baeef490e8f298e8ee55bbd10b5eef1e974b8d9b23ece6d3d350668baf78f9bd3d36389c4abba1dc4b9011065be57c7169
SSDEEP

98304:R2zlVi4T1PL/EFXVAAGFkdjurPIUFxA9M1pwJJD/Oa:kiu+VGCdjuLIUFEztma

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  1676-168-0x0000000001230000-0x00000000018C7000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  e03b4df29ffa144964b2b2be87cbd7b2
- SHA1
  
  dfcdd0e65264571c6ca099d4ca969c361dfebd8e
- SHA256
  
  2f4a94c609b5763806d189dfa8f08f0ec002ff0b8380c0ed1a76d48c865113b2
- SHA512
  
  fb34130a1ce9d0513e63154f0b5478baeef490e8f298e8ee55bbd10b5eef1e974b8d9b23ece6d3d350668baf78f9bd3d36389c4abba1dc4b9011065be57c7169
- SSDEEP
  
  98304:R2zlVi4T1PL/EFXVAAGFkdjurPIUFxA9M1pwJJD/Oa:kiu+VGCdjuLIUFEztma
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer