stealc | a908c60bc558f3b8f3adca8bb0e86af3bcb3f9fbbbb2a64eb4dd152b5d2d6fdb | Triage

Sharing

General

Target

2124-207-0x0000000000860000-0x0000000000EF3000-memory.dmp
Size

6.6MB
Sample

241212-x1aeasvkew
MD5

50d0139c1e796e9b7773a3ce40214a5a
SHA1

623a56cd9b8f32e1bf0a4e2ba2c9875a690a5777
SHA256

a908c60bc558f3b8f3adca8bb0e86af3bcb3f9fbbbb2a64eb4dd152b5d2d6fdb
SHA512

98772e50e90e34c6d792e195def216dc3a4d47374604f1d8c625471bcf237a04712c6c47c2741fff265b8227fe7ded27ecd12849c1af18f4e268743b32bff697
SSDEEP

98304:v4BXpwkVBywHjLoZCjY1W1oz3nSxgWsQtxgVU5n+2o:vEWWaGW63F

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2124-207-0x0000000000860000-0x0000000000EF3000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  50d0139c1e796e9b7773a3ce40214a5a
- SHA1
  
  623a56cd9b8f32e1bf0a4e2ba2c9875a690a5777
- SHA256
  
  a908c60bc558f3b8f3adca8bb0e86af3bcb3f9fbbbb2a64eb4dd152b5d2d6fdb
- SHA512
  
  98772e50e90e34c6d792e195def216dc3a4d47374604f1d8c625471bcf237a04712c6c47c2741fff265b8227fe7ded27ecd12849c1af18f4e268743b32bff697
- SSDEEP
  
  98304:v4BXpwkVBywHjLoZCjY1W1oz3nSxgWsQtxgVU5n+2o:vEWWaGW63F
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer