stealc | ce8a9fee9e939d8aa2feffc1e34ec645a1b03d8fbf739de8bf5951e436d71c0d | Triage

Sharing

General

Target

1388-130-0x0000000000F80000-0x0000000001610000-memory.dmp
Size

6.6MB
Sample

241212-q1771awkcw
MD5

f86fdbc2418e0668ea04468e9ddace65
SHA1

a9e073a7c9a7cd4e8a7b46da7aa650615eb897aa
SHA256

ce8a9fee9e939d8aa2feffc1e34ec645a1b03d8fbf739de8bf5951e436d71c0d
SHA512

ff98ac966b335a2686493d563251afbdb690f1be4182ef1b255d53a94c6bcebc5eec08033c8af1b9e5ab2604a9bb25196d6e94d7bfa966ad9dcaa0ce9298e067
SSDEEP

98304:fegfdT7y+wPM0/nI7WtjfquEsXKs3BU3o9kY4/kB:MMoKsOuj6Cm3oG

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  1388-130-0x0000000000F80000-0x0000000001610000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  f86fdbc2418e0668ea04468e9ddace65
- SHA1
  
  a9e073a7c9a7cd4e8a7b46da7aa650615eb897aa
- SHA256
  
  ce8a9fee9e939d8aa2feffc1e34ec645a1b03d8fbf739de8bf5951e436d71c0d
- SHA512
  
  ff98ac966b335a2686493d563251afbdb690f1be4182ef1b255d53a94c6bcebc5eec08033c8af1b9e5ab2604a9bb25196d6e94d7bfa966ad9dcaa0ce9298e067
- SSDEEP
  
  98304:fegfdT7y+wPM0/nI7WtjfquEsXKs3BU3o9kY4/kB:MMoKsOuj6Cm3oG
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer