stealc | c1dbf0ea35916981acd08e17f2f7e49c497023258fd3003280b055a1961e2e88 | Triage

Sharing

General

Target

3456-38-0x0000000000B70000-0x0000000001215000-memory.dmp
Size

6.6MB
Sample

241212-sqdazszpek
MD5

9778114c5571096fb82a31dd097ed2f6
SHA1

8f94b429cbdcf4d966ce9d0f1e0c677d947490e3
SHA256

c1dbf0ea35916981acd08e17f2f7e49c497023258fd3003280b055a1961e2e88
SHA512

190dd93eef491e4d3d8bd78f1851cf97ba187c85cda09792f4e8ca7ded36f3b5af3865df3b9d76754921f88a94f3418e9bc770aa399fe0cf2fedc901bc7d10da
SSDEEP

98304:hsZJdPCqUjtECe6g/K3uVxmT1bpDq1PYs5lqYnxlz:hKqbg/K3z1bpD+p5cYnxZ

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  3456-38-0x0000000000B70000-0x0000000001215000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  9778114c5571096fb82a31dd097ed2f6
- SHA1
  
  8f94b429cbdcf4d966ce9d0f1e0c677d947490e3
- SHA256
  
  c1dbf0ea35916981acd08e17f2f7e49c497023258fd3003280b055a1961e2e88
- SHA512
  
  190dd93eef491e4d3d8bd78f1851cf97ba187c85cda09792f4e8ca7ded36f3b5af3865df3b9d76754921f88a94f3418e9bc770aa399fe0cf2fedc901bc7d10da
- SSDEEP
  
  98304:hsZJdPCqUjtECe6g/K3uVxmT1bpDq1PYs5lqYnxlz:hKqbg/K3z1bpD+p5cYnxZ
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer