General

  • Target

    55bbd315c6bf370a796751144191e8a2c0b5e1910f0273c61130186e5d4441abN

  • Size

    346KB

  • Sample

    241109-agxn6askhs

  • MD5

    53fabd260760bbeba5a54ff60a5d7020

  • SHA1

    1f80a28addcfa544034905e3448f84e7da5afab1

  • SHA256

    55bbd315c6bf370a796751144191e8a2c0b5e1910f0273c61130186e5d4441ab

  • SHA512

    ef1a4283e2ae3b32bd0becfdfb091bd34e8be398302bb3881b70875ad97a43076fda318193d0ff90132a276dca5c2cb315d3ba652bd6d884ee514dc1311901ed

  • SSDEEP

    3072:d2f1np7iJjbaG9kF00q8BpXNBbvXLG934q1yyklkRp/B6mDbxkc3feI5qFGW0rmV:Uf1npTAkG0q8fjXWJPHj5qFbqIUB

Malware Config

Extracted

Family

stealc

Botnet

default9_pal

C2

http://62.122.184.144

Attributes
  • url_path

    /f88d87a7e087e100.php

Targets

    • Target

      55bbd315c6bf370a796751144191e8a2c0b5e1910f0273c61130186e5d4441abN

    • Size

      346KB

    • MD5

      53fabd260760bbeba5a54ff60a5d7020

    • SHA1

      1f80a28addcfa544034905e3448f84e7da5afab1

    • SHA256

      55bbd315c6bf370a796751144191e8a2c0b5e1910f0273c61130186e5d4441ab

    • SHA512

      ef1a4283e2ae3b32bd0becfdfb091bd34e8be398302bb3881b70875ad97a43076fda318193d0ff90132a276dca5c2cb315d3ba652bd6d884ee514dc1311901ed

    • SSDEEP

      3072:d2f1np7iJjbaG9kF00q8BpXNBbvXLG934q1yyklkRp/B6mDbxkc3feI5qFGW0rmV:Uf1npTAkG0q8fjXWJPHj5qFbqIUB

    • Stealc

      Stealc is an infostealer written in C++.

    • Stealc family

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks