stealc | 9d643beb566e6274ec2d9a01abfc80f23a0cae26f402b9e5e73f9c7ab025ee28 | Triage

Sharing

General

Target

2332-1134-0x0000000000170000-0x000000000088E000-memory.dmp
Size

7.1MB
Sample

241104-m5q8ha1raq
MD5

30504eb8defca859716ad1ea2b01d578
SHA1

5a8c1f832af920e9d0e274f3bf07e75d9db344c8
SHA256

9d643beb566e6274ec2d9a01abfc80f23a0cae26f402b9e5e73f9c7ab025ee28
SHA512

25b9095f78bf3bb4b3c2decd66e658b90358b35b9241be95dbe0c67b3f42c0a811e07c42b354d2aa4eeac8de6336b7685d357a58a8d6ffb04f6949acf958230a
SSDEEP

98304:WaGJtF4RIwyb1PFtTxUGBCELAJ7fhGTWGEiucsCj95WY:RGh6ybI375IRosj9j

Score

10^/10

stealc tale discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

tale

C2

http://185.215.113.206

Attributes

url_path
/6c4adf523b719729.php

Targets

- Target
  
  2332-1134-0x0000000000170000-0x000000000088E000-memory.dmp
- Size
  
  7.1MB
- MD5
  
  30504eb8defca859716ad1ea2b01d578
- SHA1
  
  5a8c1f832af920e9d0e274f3bf07e75d9db344c8
- SHA256
  
  9d643beb566e6274ec2d9a01abfc80f23a0cae26f402b9e5e73f9c7ab025ee28
- SHA512
  
  25b9095f78bf3bb4b3c2decd66e658b90358b35b9241be95dbe0c67b3f42c0a811e07c42b354d2aa4eeac8de6336b7685d357a58a8d6ffb04f6949acf958230a
- SSDEEP
  
  98304:WaGJtF4RIwyb1PFtTxUGBCELAJ7fhGTWGEiucsCj95WY:RGh6ybI375IRosj9j
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer