stealc | ccf3effd247026c1f236c1c8db1b83a26772fefdc1ce940c3205e6701b6225f5 | Triage

Sharing

General

Target

1172-62-0x00000000004A0000-0x0000000000BDB000-memory.dmp
Size

7.2MB
Sample

241107-fq6lbavpby
MD5

cb238fc92eab09d8cdcbb7f193f77c2b
SHA1

90152400eb7306f2000c989d9159049c3d5ef5a2
SHA256

ccf3effd247026c1f236c1c8db1b83a26772fefdc1ce940c3205e6701b6225f5
SHA512

04ee1650a512b7c4010dca85ded26aa9c18f356d17a55e2287cb7555151301ed861a50f7403f725e159b65f2083faaf49ee2983df55cfe98ab6cc826b0e87516
SSDEEP

98304:gIGJtF4RIwybTu4pkV9/s3/Nex2KyyE+BwmaE2PGGeE0X2JrV:ZGh6ybT+4yE+BoEcGGT0aZ

Score

10^/10

stealc tale discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

tale

C2

http://185.215.113.206

Attributes

url_path
/6c4adf523b719729.php

Targets

- Target
  
  1172-62-0x00000000004A0000-0x0000000000BDB000-memory.dmp
- Size
  
  7.2MB
- MD5
  
  cb238fc92eab09d8cdcbb7f193f77c2b
- SHA1
  
  90152400eb7306f2000c989d9159049c3d5ef5a2
- SHA256
  
  ccf3effd247026c1f236c1c8db1b83a26772fefdc1ce940c3205e6701b6225f5
- SHA512
  
  04ee1650a512b7c4010dca85ded26aa9c18f356d17a55e2287cb7555151301ed861a50f7403f725e159b65f2083faaf49ee2983df55cfe98ab6cc826b0e87516
- SSDEEP
  
  98304:gIGJtF4RIwybTu4pkV9/s3/Nex2KyyE+BwmaE2PGGeE0X2JrV:ZGh6ybT+4yE+BoEcGGT0aZ
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer