stealc | 192df68e97e90658e5d61f7106d035e56cfdc924ede50ce4bdd1fe3ef09f5124 | Triage

Sharing

General

Target

2136-81-0x00000000001D0000-0x0000000000850000-memory.dmp
Size

6.5MB
Sample

241125-nw243svmhz
MD5

3e9ce1c48857f01f0149d6526660775a
SHA1

4e47509da2728b6fff14642bf7a1089c7cd90549
SHA256

192df68e97e90658e5d61f7106d035e56cfdc924ede50ce4bdd1fe3ef09f5124
SHA512

5975d6a87da0495f4cab39a675be3d3969f1fdc44a28adcb7b6c67924fc885f40839cb2967daa89db2f59c047aa964e1b028d8b3d795eb1b14dee0359ee9355f
SSDEEP

98304:DtrFfuLhtMVHPmip0RJdnz87f3man9aYoEMljalem:PV6znIzitE9

Score

10^/10

stealc mars discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

mars

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2136-81-0x00000000001D0000-0x0000000000850000-memory.dmp
- Size
  
  6.5MB
- MD5
  
  3e9ce1c48857f01f0149d6526660775a
- SHA1
  
  4e47509da2728b6fff14642bf7a1089c7cd90549
- SHA256
  
  192df68e97e90658e5d61f7106d035e56cfdc924ede50ce4bdd1fe3ef09f5124
- SHA512
  
  5975d6a87da0495f4cab39a675be3d3969f1fdc44a28adcb7b6c67924fc885f40839cb2967daa89db2f59c047aa964e1b028d8b3d795eb1b14dee0359ee9355f
- SSDEEP
  
  98304:DtrFfuLhtMVHPmip0RJdnz87f3man9aYoEMljalem:PV6znIzitE9
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer