stealc | f71299ccf8959aee130a9389bb3b0251ff82a724649a61ff7101ac3794295a2e | Triage

Sharing

General

Target

4424-86-0x00000000007D0000-0x0000000000E72000-memory.dmp
Size

6.6MB
Sample

241125-msnxlsyqdl
MD5

aba6e40c21daa84cac0b49c9b26fb747
SHA1

86076eabb737f9fd380013f61367740e0c4d0049
SHA256

f71299ccf8959aee130a9389bb3b0251ff82a724649a61ff7101ac3794295a2e
SHA512

f86bcb80726881778dc27c71979fc65ecfface05cf1c0ed34da332ffba6b50e41cc2fee7211c35c2090611f48b36a46cf5d5987985580bfb13674785c9ca4bd9
SSDEEP

98304:/TrQBgZvfWSNvGWIaScqcqokI4u26LBbPgUdnyziueQr3He:wBnlDoK8boKyziUrO

Score

10^/10

stealc mars discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

mars

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  4424-86-0x00000000007D0000-0x0000000000E72000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  aba6e40c21daa84cac0b49c9b26fb747
- SHA1
  
  86076eabb737f9fd380013f61367740e0c4d0049
- SHA256
  
  f71299ccf8959aee130a9389bb3b0251ff82a724649a61ff7101ac3794295a2e
- SHA512
  
  f86bcb80726881778dc27c71979fc65ecfface05cf1c0ed34da332ffba6b50e41cc2fee7211c35c2090611f48b36a46cf5d5987985580bfb13674785c9ca4bd9
- SSDEEP
  
  98304:/TrQBgZvfWSNvGWIaScqcqokI4u26LBbPgUdnyziueQr3He:wBnlDoK8boKyziUrO
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer