stealc | 5a4cdd456e21f50805580114fdd056cc9ee6a2fd07089b1f15a0341a10c5e876 | Triage

Sharing

General

Target

2980-3-0x0000000000A50000-0x000000000117E000-memory.dmp
Size

7.2MB
Sample

241104-kvze1s1jej
MD5

d48df94b3eb3da90e552a0c7f54a5c83
SHA1

337db5018874ca712ab4a728a594bbb18514a3b2
SHA256

5a4cdd456e21f50805580114fdd056cc9ee6a2fd07089b1f15a0341a10c5e876
SHA512

53dcd6e5b08ebbfc26a356764ec35f79b1e65c60cc7b8dd19f93895d71d8d02ba7a477ecba24dcd3ae150efb19f63b647aa3c7bc0b0c72d0616df3f0d4918a14
SSDEEP

98304:0lAGJtF4RIwybicCnjpZhRb1J3yVnE+dISsnEi7M870j+bL:LGh6ybwb0E+GSsnL9bL

Score

10^/10

stealc tale discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

tale

C2

http://185.215.113.206

Attributes

url_path
/6c4adf523b719729.php

Targets

- Target
  
  2980-3-0x0000000000A50000-0x000000000117E000-memory.dmp
- Size
  
  7.2MB
- MD5
  
  d48df94b3eb3da90e552a0c7f54a5c83
- SHA1
  
  337db5018874ca712ab4a728a594bbb18514a3b2
- SHA256
  
  5a4cdd456e21f50805580114fdd056cc9ee6a2fd07089b1f15a0341a10c5e876
- SHA512
  
  53dcd6e5b08ebbfc26a356764ec35f79b1e65c60cc7b8dd19f93895d71d8d02ba7a477ecba24dcd3ae150efb19f63b647aa3c7bc0b0c72d0616df3f0d4918a14
- SSDEEP
  
  98304:0lAGJtF4RIwybicCnjpZhRb1J3yVnE+dISsnEi7M870j+bL:LGh6ybwb0E+GSsnL9bL
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer