stealc | 3f0eee0e656c8277ffb757baa5c8c685d91dd75e9787f9a09cb4ee35972d6f59 | Triage

Sharing

General

Target

2532-3-0x0000000001390000-0x0000000001A26000-memory.dmp
Size

6.6MB
Sample

241212-2vc1fsznbz
MD5

95fbb042426249b2e3d0a727741b0dd7
SHA1

432ef226e169cd4a53b0baa282f69c2c134d1a98
SHA256

3f0eee0e656c8277ffb757baa5c8c685d91dd75e9787f9a09cb4ee35972d6f59
SHA512

601fdaa38945592524964064e23debed8a6872d46232808a0339cc2e994f75768251ebf90bb976f904ccbac389dba005be3606567cb61bd68196c2c56ee495d3
SSDEEP

49152:vbHVS815Ohommy6W4hESbj8STBe2yvjlGGnnFEDtp4xrpcJdXhv22mDiEo:D4815OKmmy6Wm8SVhy5gt6ruJdXhuW

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2532-3-0x0000000001390000-0x0000000001A26000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  95fbb042426249b2e3d0a727741b0dd7
- SHA1
  
  432ef226e169cd4a53b0baa282f69c2c134d1a98
- SHA256
  
  3f0eee0e656c8277ffb757baa5c8c685d91dd75e9787f9a09cb4ee35972d6f59
- SHA512
  
  601fdaa38945592524964064e23debed8a6872d46232808a0339cc2e994f75768251ebf90bb976f904ccbac389dba005be3606567cb61bd68196c2c56ee495d3
- SSDEEP
  
  49152:vbHVS815Ohommy6W4hESbj8STBe2yvjlGGnnFEDtp4xrpcJdXhv22mDiEo:D4815OKmmy6Wm8SVhy5gt6ruJdXhuW
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer