stealc | 1290bf5ff73d7faee2f7befb6f5d9ef85ee10339514a0d3693469de4634f5528 | Triage

Sharing

General

Target

3452-76-0x00000000002F0000-0x0000000000985000-memory.dmp
Size

6.6MB
Sample

241216-sr14favjhq
MD5

eaaf049dc0436013ad8edf5fa320f09d
SHA1

29772f72fabe6228007b8533517a51aa5336b25f
SHA256

1290bf5ff73d7faee2f7befb6f5d9ef85ee10339514a0d3693469de4634f5528
SHA512

66ad04bf8f5b31b6cb3eb860da80b6cf29412d9e0d3a3e4de56063bf33929b96d9244a4621f921be68fc149577d0bda818115c92168914f51edd76cdda382809
SSDEEP

98304:tT6QBfFi9IfVwKbWNyr+NeKupAYASdPyRGGkBfoFaE9P:JhaNyr+cTASdqRZaE

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  3452-76-0x00000000002F0000-0x0000000000985000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  eaaf049dc0436013ad8edf5fa320f09d
- SHA1
  
  29772f72fabe6228007b8533517a51aa5336b25f
- SHA256
  
  1290bf5ff73d7faee2f7befb6f5d9ef85ee10339514a0d3693469de4634f5528
- SHA512
  
  66ad04bf8f5b31b6cb3eb860da80b6cf29412d9e0d3a3e4de56063bf33929b96d9244a4621f921be68fc149577d0bda818115c92168914f51edd76cdda382809
- SSDEEP
  
  98304:tT6QBfFi9IfVwKbWNyr+NeKupAYASdPyRGGkBfoFaE9P:JhaNyr+cTASdqRZaE
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer