stealc | ca269f1efb48dbe470d4ec8cbdc17a5802e732f7bf3e528505351207b7fd856a | Triage

Sharing

General

Target

2084-3-0x0000000000090000-0x0000000000730000-memory.dmp
Size

6.6MB
Sample

241125-b6sxyaxlfm
MD5

4186b2fc4d603bf5a2a04f6fccfd957b
SHA1

67cb491840de50d9de4d9cf2b6b87310779507a2
SHA256

ca269f1efb48dbe470d4ec8cbdc17a5802e732f7bf3e528505351207b7fd856a
SHA512

a2e293004db498d988e6b6648b0d3d87edc43bfe0b80e148dce8b9f4bda80ec1ddf13a27166ab37e0721aa839d632ace20d4b98907045503226e9e42755682fc
SSDEEP

49152:5GvDH9/vDXKg15d5+lXq5DnGcE9gruAuEAAkF4diqTAV2oVetv/wX:5EDHFKg15d5+lXqlfIgEQLdn8NV2v/w

Score

10^/10

stealc mars discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

mars

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2084-3-0x0000000000090000-0x0000000000730000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  4186b2fc4d603bf5a2a04f6fccfd957b
- SHA1
  
  67cb491840de50d9de4d9cf2b6b87310779507a2
- SHA256
  
  ca269f1efb48dbe470d4ec8cbdc17a5802e732f7bf3e528505351207b7fd856a
- SHA512
  
  a2e293004db498d988e6b6648b0d3d87edc43bfe0b80e148dce8b9f4bda80ec1ddf13a27166ab37e0721aa839d632ace20d4b98907045503226e9e42755682fc
- SSDEEP
  
  49152:5GvDH9/vDXKg15d5+lXq5DnGcE9gruAuEAAkF4diqTAV2oVetv/wX:5EDHFKg15d5+lXqlfIgEQLdn8NV2v/w
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer