stealc | e3d0791bf37aadecc004a9b6a272a5bd7ae826d80e6b5790e5e5f295a6f539ac | Triage

Sharing

General

Target

3856-697-0x00000000005E0000-0x0000000000CF5000-memory.dmp
Size

7.1MB
Sample

241106-avreas1max
MD5

811590f72e47ca3dae761bdf5fca485e
SHA1

4169e1d28119c39f53b3ca6b09d88d54b8da9fae
SHA256

e3d0791bf37aadecc004a9b6a272a5bd7ae826d80e6b5790e5e5f295a6f539ac
SHA512

daa236fe7bb570e84b35c4b74fda8817a1a2991339f5eb906d01a5a8e75c58ad5f93d61bbe746c09786e7d49eec79147a44921088015a55ccd785bbbe67b7843
SSDEEP

98304:aaGJtF4RIwybQBTnbw8xZI8AfN0NT9ylTnt7xid50uSLZMeIHUVeQq:hGh6ybaXy9t7YLUae5oJ

Score

10^/10

stealc tale discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

tale

C2

http://185.215.113.206

Attributes

url_path
/6c4adf523b719729.php

Targets

- Target
  
  3856-697-0x00000000005E0000-0x0000000000CF5000-memory.dmp
- Size
  
  7.1MB
- MD5
  
  811590f72e47ca3dae761bdf5fca485e
- SHA1
  
  4169e1d28119c39f53b3ca6b09d88d54b8da9fae
- SHA256
  
  e3d0791bf37aadecc004a9b6a272a5bd7ae826d80e6b5790e5e5f295a6f539ac
- SHA512
  
  daa236fe7bb570e84b35c4b74fda8817a1a2991339f5eb906d01a5a8e75c58ad5f93d61bbe746c09786e7d49eec79147a44921088015a55ccd785bbbe67b7843
- SSDEEP
  
  98304:aaGJtF4RIwybQBTnbw8xZI8AfN0NT9ylTnt7xid50uSLZMeIHUVeQq:hGh6ybaXy9t7YLUae5oJ
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer