stealc | 821279447e72044a25b3b96956182b90828dbd9cd1ec726ccce571019553256f | Triage

Sharing

General

Target

1916-107-0x0000000000220000-0x0000000000481000-memory.dmp
Size

2.4MB
Sample

241212-p1n9fsvjfx
MD5

90d5d90b33bf6112941462d88e504c06
SHA1

c69a98236b633e98e336e3a315ea6dadf7b20cc0
SHA256

821279447e72044a25b3b96956182b90828dbd9cd1ec726ccce571019553256f
SHA512

b56ab5aaaa8cc722bc3e2db43d5eaad9be27fd86da2447fb60caa53fff695fbd78f2eb142214792ae94b74bf2a925b64f5233386e2e4a528b846c959d6e617ae
SSDEEP

24576:E9jaLDufUi1oUNB9LcWbUISH3sSpQlPPDEPmMKQqhbXts90PnmbgMEXTwqY+MmOR:V/QV4

Score

10^/10

stealc default_valenciga discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

default_valenciga

C2

http://185.215.113.17

Attributes

url_path
/2fb6c2cc8dce150a.php

Targets

- Target
  
  1916-107-0x0000000000220000-0x0000000000481000-memory.dmp
- Size
  
  2.4MB
- MD5
  
  90d5d90b33bf6112941462d88e504c06
- SHA1
  
  c69a98236b633e98e336e3a315ea6dadf7b20cc0
- SHA256
  
  821279447e72044a25b3b96956182b90828dbd9cd1ec726ccce571019553256f
- SHA512
  
  b56ab5aaaa8cc722bc3e2db43d5eaad9be27fd86da2447fb60caa53fff695fbd78f2eb142214792ae94b74bf2a925b64f5233386e2e4a528b846c959d6e617ae
- SSDEEP
  
  24576:E9jaLDufUi1oUNB9LcWbUISH3sSpQlPPDEPmMKQqhbXts90PnmbgMEXTwqY+MmOR:V/QV4
Score

10^/10

stealc stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

default_valencigastealc

behavioral1

behavioral2

stealcdiscoverystealer