stealc | 887b374bcc6ec852a9c462ff2f34c7466e4a67c383babf6d47a7b71f5105f855 | Triage

Sharing

General

Target

588-3-0x0000000000990000-0x0000000001033000-memory.dmp
Size

6.6MB
Sample

241029-ct1mpatanq
MD5

fd9eead5bcf93773dcc045373434b3c5
SHA1

9d6d47215f82b05b38ab595232635a0ee16095bb
SHA256

887b374bcc6ec852a9c462ff2f34c7466e4a67c383babf6d47a7b71f5105f855
SHA512

246f431c913bc6df7db8c5d33dde459de95c0495289ec1d19edafea939767cfad479feee66ec170462bf96fdbe4634396cf333561b08e77630f34a337363a42f
SSDEEP

98304:rgZAOfiCod9k9iijsKMmlaOfMB5CX3PXQxzuuF:IA4ofkzjXlabB5CPX0zv

Score

10^/10

stealc doma discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

doma

C2

http://185.215.113.37

Attributes

url_path
/e2b1563c6670f193.php

Targets

- Target
  
  588-3-0x0000000000990000-0x0000000001033000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  fd9eead5bcf93773dcc045373434b3c5
- SHA1
  
  9d6d47215f82b05b38ab595232635a0ee16095bb
- SHA256
  
  887b374bcc6ec852a9c462ff2f34c7466e4a67c383babf6d47a7b71f5105f855
- SHA512
  
  246f431c913bc6df7db8c5d33dde459de95c0495289ec1d19edafea939767cfad479feee66ec170462bf96fdbe4634396cf333561b08e77630f34a337363a42f
- SSDEEP
  
  98304:rgZAOfiCod9k9iijsKMmlaOfMB5CX3PXQxzuuF:IA4ofkzjXlabB5CPX0zv
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer