stealc | 1ec2b0cce50adc4bc8b2aacb1bb4d794f5cd46795bb74a7510cd78429855d00a | Triage

Sharing

General

Target

2308-46-0x0000000000F20000-0x00000000015C0000-memory.dmp
Size

6.6MB
Sample

241211-abeldszreq
MD5

2a1989f0787ea181a290ce7095dbddbe
SHA1

e23563540acc1646fdf87988fa4c221a714b02b8
SHA256

1ec2b0cce50adc4bc8b2aacb1bb4d794f5cd46795bb74a7510cd78429855d00a
SHA512

8a52d391ac95f6e7b951f420c617dbd29103fee8ef7204774109abc0530630052a0e13f6c78a2e624500a7a9ef362665021a516215b2fb1af9f82c3188583f58
SSDEEP

49152:tUWVm+iqe7ePrbYK5jFnj2zrkq0ot9C5XxWFS0dvGizzIzqNscyzqq00:nd8eHP+r30ot9GXKvGkzzspP

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2308-46-0x0000000000F20000-0x00000000015C0000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  2a1989f0787ea181a290ce7095dbddbe
- SHA1
  
  e23563540acc1646fdf87988fa4c221a714b02b8
- SHA256
  
  1ec2b0cce50adc4bc8b2aacb1bb4d794f5cd46795bb74a7510cd78429855d00a
- SHA512
  
  8a52d391ac95f6e7b951f420c617dbd29103fee8ef7204774109abc0530630052a0e13f6c78a2e624500a7a9ef362665021a516215b2fb1af9f82c3188583f58
- SSDEEP
  
  49152:tUWVm+iqe7ePrbYK5jFnj2zrkq0ot9C5XxWFS0dvGizzIzqNscyzqq00:nd8eHP+r30ot9GXKvGkzzspP
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer