stealc | 3307ce9fa4b500c21773647bba0b8aba6af93630f8bea31bb81db04ccd877471 | Triage

Sharing

General

Target

2416-3-0x0000000000960000-0x0000000000FE8000-memory.dmp
Size

6.5MB
Sample

241212-p9nz2sxjcr
MD5

79c39523d407993fc869797a5b6ab02a
SHA1

4aa8d945a4be9f3c2dbab4dd2f99303391564b46
SHA256

3307ce9fa4b500c21773647bba0b8aba6af93630f8bea31bb81db04ccd877471
SHA512

ee648d0fd60242cce6642c4ccec784227b32348ae09e438ffd4bc758f2db93236fbb2bbfb1a332a84f98124c000664bab4a871fb5838fa18e0455e8bb5c4da57
SSDEEP

98304:4EdE9FsemnJAazIzIXXSyOy9XQsNg+ca:43zIXX5OgQQdc

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2416-3-0x0000000000960000-0x0000000000FE8000-memory.dmp
- Size
  
  6.5MB
- MD5
  
  79c39523d407993fc869797a5b6ab02a
- SHA1
  
  4aa8d945a4be9f3c2dbab4dd2f99303391564b46
- SHA256
  
  3307ce9fa4b500c21773647bba0b8aba6af93630f8bea31bb81db04ccd877471
- SHA512
  
  ee648d0fd60242cce6642c4ccec784227b32348ae09e438ffd4bc758f2db93236fbb2bbfb1a332a84f98124c000664bab4a871fb5838fa18e0455e8bb5c4da57
- SSDEEP
  
  98304:4EdE9FsemnJAazIzIXXSyOy9XQsNg+ca:43zIXX5OgQQdc
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer