stealc | 3be33fae2ab62672d122bb81c9e8143776fa984db551d1b6328f531d7753ec87 | Triage

Sharing

General

Target

1624-3-0x0000000000EE0000-0x000000000157D000-memory.dmp
Size

6.6MB
Sample

241029-c3vg2a1kdm
MD5

6e13b9369cdb7b17c2e32545fe753a79
SHA1

25f3859d4aece8b32030cf8e2733ab7f02212493
SHA256

3be33fae2ab62672d122bb81c9e8143776fa984db551d1b6328f531d7753ec87
SHA512

90a1e16a6aecc3d0fe89dcfb035631f66b1a601ba167baa6e8e398a2acc1924086c884c583f811e4653093f027de23cab049eda15cc9671a24db38fe23299b2a
SSDEEP

98304:vLuTcN843heernRvS1k4L6YD71x/6PUvZ4Hpo/ZCZE:qIRvS1HLj1xtvmpo

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  1624-3-0x0000000000EE0000-0x000000000157D000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  6e13b9369cdb7b17c2e32545fe753a79
- SHA1
  
  25f3859d4aece8b32030cf8e2733ab7f02212493
- SHA256
  
  3be33fae2ab62672d122bb81c9e8143776fa984db551d1b6328f531d7753ec87
- SHA512
  
  90a1e16a6aecc3d0fe89dcfb035631f66b1a601ba167baa6e8e398a2acc1924086c884c583f811e4653093f027de23cab049eda15cc9671a24db38fe23299b2a
- SSDEEP
  
  98304:vLuTcN843heernRvS1k4L6YD71x/6PUvZ4Hpo/ZCZE:qIRvS1HLj1xtvmpo
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer