stealc | c8286f449eb16f96768088f136247b727ea28477759fc982103813f8b7624bd4 | Triage

Sharing

General

Target

3004-3-0x0000000000C40000-0x00000000012C7000-memory.dmp
Size

6.5MB
Sample

241212-s8prqsynby
MD5

7a3342e0c9e601222c805184b79d271f
SHA1

8d3668e304723d0ecd0c748f1ba06bda5b5b5639
SHA256

c8286f449eb16f96768088f136247b727ea28477759fc982103813f8b7624bd4
SHA512

07dc58bc425690fd76e98fd02eeed899316030b26a6c710d658e2496c9dc6851fb139151e65c5738c61546151bd4c2d6e6012deab59098499e8a4ae0ca267864
SSDEEP

98304:aLB7Fd3wZ25TeENJ3ufmz4GstHiRbye3u:KA8IENJ+fmz4GDRbywu

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  3004-3-0x0000000000C40000-0x00000000012C7000-memory.dmp
- Size
  
  6.5MB
- MD5
  
  7a3342e0c9e601222c805184b79d271f
- SHA1
  
  8d3668e304723d0ecd0c748f1ba06bda5b5b5639
- SHA256
  
  c8286f449eb16f96768088f136247b727ea28477759fc982103813f8b7624bd4
- SHA512
  
  07dc58bc425690fd76e98fd02eeed899316030b26a6c710d658e2496c9dc6851fb139151e65c5738c61546151bd4c2d6e6012deab59098499e8a4ae0ca267864
- SSDEEP
  
  98304:aLB7Fd3wZ25TeENJ3ufmz4GstHiRbye3u:KA8IENJ+fmz4GDRbywu
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer