General

  • Target

    2864-38-0x00000000003C0000-0x0000000000A53000-memory.dmp

  • Size

    6.6MB

  • Sample

    241212-1m4mrszqdk

  • MD5

    7308ef424c3109ec5174e158173d6e26

  • SHA1

    dcb371a3aee3fa5547472482003dbe496f444bec

  • SHA256

    d3b46933abd91b3f6ba53e0cae3a6a0694744d0497a9db6cac8ec8ebfe774107

  • SHA512

    235bfc5692eab90111d48b4519e78c39850ef19a02b2139c7967753a2de92b2cebd74c5d7eb73fda862fa5e9044b47c55e9197187422a2f137b7028505d1f0ba

  • SSDEEP

    98304:nogXpwkVBywHjPftSKl1Wf2z3nSxgWsQtxgVU5n+2o:nx1WOGW63F

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes
  • url_path

    /c4becf79229cb002.php

Targets

    • Target

      2864-38-0x00000000003C0000-0x0000000000A53000-memory.dmp

    • Size

      6.6MB

    • MD5

      7308ef424c3109ec5174e158173d6e26

    • SHA1

      dcb371a3aee3fa5547472482003dbe496f444bec

    • SHA256

      d3b46933abd91b3f6ba53e0cae3a6a0694744d0497a9db6cac8ec8ebfe774107

    • SHA512

      235bfc5692eab90111d48b4519e78c39850ef19a02b2139c7967753a2de92b2cebd74c5d7eb73fda862fa5e9044b47c55e9197187422a2f137b7028505d1f0ba

    • SSDEEP

      98304:nogXpwkVBywHjPftSKl1Wf2z3nSxgWsQtxgVU5n+2o:nx1WOGW63F

MITRE ATT&CK Enterprise v15

Tasks