stealc | c5e7d7061a626da0c66e500331ea82408194e0a6787d3fe3cd2867b89b4aec48 | Triage

Sharing

General

Target

6780-7437-0x0000000000A30000-0x00000000010C6000-memory.dmp
Size

6.6MB
Sample

241214-th18hsypfj
MD5

0353e7b72e8e4482bde884a7abb956a4
SHA1

3291b224816e0f2d2e8ed6ccf4ad37b163446b18
SHA256

c5e7d7061a626da0c66e500331ea82408194e0a6787d3fe3cd2867b89b4aec48
SHA512

81b99573f046975927137edd00c44c682efe9711407b935f1207ef9ac11f82ad31f2484ee9641f57a669f75fc1447d45f7e193dfff4537d555658467d08e2d0e
SSDEEP

98304:UtSMV22MF1s2THvJp22x66EpGuLegm4RglYDl1w:UIzTPPVx668m9lYDl1

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  6780-7437-0x0000000000A30000-0x00000000010C6000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  0353e7b72e8e4482bde884a7abb956a4
- SHA1
  
  3291b224816e0f2d2e8ed6ccf4ad37b163446b18
- SHA256
  
  c5e7d7061a626da0c66e500331ea82408194e0a6787d3fe3cd2867b89b4aec48
- SHA512
  
  81b99573f046975927137edd00c44c682efe9711407b935f1207ef9ac11f82ad31f2484ee9641f57a669f75fc1447d45f7e193dfff4537d555658467d08e2d0e
- SSDEEP
  
  98304:UtSMV22MF1s2THvJp22x66EpGuLegm4RglYDl1w:UIzTPPVx668m9lYDl1
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer