stealc | 6f2f67567b606277766af8521347cabf2fc45b4ea3291ec45b19eabd92ec7675 | Triage

Sharing

General

Target

1984-320-0x0000000001310000-0x00000000019A7000-memory.dmp
Size

6.6MB
Sample

241120-pn8gka1nck
MD5

7697e60bb893bb0c27bf8835979bf8f0
SHA1

deac8e21d2df80bc3c64b4adc131747f670b4e7e
SHA256

6f2f67567b606277766af8521347cabf2fc45b4ea3291ec45b19eabd92ec7675
SHA512

74a5e840b10bc157fb29dd6d139f3b837bc26e32f174ea87f979b77efd0f8bcc629ebb75b1fcfb6b9661354b3a351a5ed4b539086954cdcc8239a1c4c6c0b4cc
SSDEEP

98304:vSVEiMa0ywj3mdr3Y+T545AT4PvnjiyaAeOKRdEGETy:HmpU3nGyaAeOKnx

Score

10^/10

stealc mars discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

mars

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  1984-320-0x0000000001310000-0x00000000019A7000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  7697e60bb893bb0c27bf8835979bf8f0
- SHA1
  
  deac8e21d2df80bc3c64b4adc131747f670b4e7e
- SHA256
  
  6f2f67567b606277766af8521347cabf2fc45b4ea3291ec45b19eabd92ec7675
- SHA512
  
  74a5e840b10bc157fb29dd6d139f3b837bc26e32f174ea87f979b77efd0f8bcc629ebb75b1fcfb6b9661354b3a351a5ed4b539086954cdcc8239a1c4c6c0b4cc
- SSDEEP
  
  98304:vSVEiMa0ywj3mdr3Y+T545AT4PvnjiyaAeOKRdEGETy:HmpU3nGyaAeOKnx
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer