stealc | 5759aa89d2b67b86d53ea4fe54eedef2839e8941ca575e5a610a9f9dbbe89e1c | Triage

Sharing

General

Target

2668-3-0x0000000000EE0000-0x0000000001580000-memory.dmp
Size

6.6MB
Sample

241119-sab3zsxcrf
MD5

91edf4824f9e5e7b9fbf15c9c2aaa991
SHA1

8b949ab2a090d9cfcab5ae1e233ac8cda5e9899e
SHA256

5759aa89d2b67b86d53ea4fe54eedef2839e8941ca575e5a610a9f9dbbe89e1c
SHA512

8d13e24ef14391a6937216287d61de5146c450e08929adbc4b5eeb51d393d30023d24258b83823fd7a17dc64b345d9b7e10cb19ea85dc4b3086e9818d6d6f56c
SSDEEP

98304:XMXjxhetj99fhDE+sBmgeusH4ryRy75eM1z:s8Wej9FVgz

Score

10^/10

stealc mars discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

mars

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2668-3-0x0000000000EE0000-0x0000000001580000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  91edf4824f9e5e7b9fbf15c9c2aaa991
- SHA1
  
  8b949ab2a090d9cfcab5ae1e233ac8cda5e9899e
- SHA256
  
  5759aa89d2b67b86d53ea4fe54eedef2839e8941ca575e5a610a9f9dbbe89e1c
- SHA512
  
  8d13e24ef14391a6937216287d61de5146c450e08929adbc4b5eeb51d393d30023d24258b83823fd7a17dc64b345d9b7e10cb19ea85dc4b3086e9818d6d6f56c
- SSDEEP
  
  98304:XMXjxhetj99fhDE+sBmgeusH4ryRy75eM1z:s8Wej9FVgz
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer