stealc | edb35dbc785eb95c331b565181a78e26980e4e70b7733630205bf24095d1bacf | Triage

Sharing

General

Target

edb35dbc785eb95c331b565181a78e26980e4e70b7733630205bf24095d1bacf.exe
Size

239KB
Sample

241217-fydv9sspfk
MD5

ac0c7c7b446033358b09302bd31fc48f
SHA1

d94ba46cd56463959570012ce1bfa3dff470cef5
SHA256

edb35dbc785eb95c331b565181a78e26980e4e70b7733630205bf24095d1bacf
SHA512

d1fee8891a5cb792156083b86f6f60417497056eb5fc896c665f4a4ea3b21c67f8bf3527d5e7e14a711079af0ff5df7304e8338c9d2c3aa6d4b6b6a6098784eb
SSDEEP

3072:aLCrbK4vn4pKkhfGN3JjL/cJ88Rmwa7Z7LUTf7OFe/J08:oaGmZk9IL0BQ517LKxxz

Score

10^/10

stealc voov discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

Voov

C2

http://154.216.17.90

Attributes

url_path
/a48146f6763ef3af.php

Targets

- Target
  
  edb35dbc785eb95c331b565181a78e26980e4e70b7733630205bf24095d1bacf.exe
- Size
  
  239KB
- MD5
  
  ac0c7c7b446033358b09302bd31fc48f
- SHA1
  
  d94ba46cd56463959570012ce1bfa3dff470cef5
- SHA256
  
  edb35dbc785eb95c331b565181a78e26980e4e70b7733630205bf24095d1bacf
- SHA512
  
  d1fee8891a5cb792156083b86f6f60417497056eb5fc896c665f4a4ea3b21c67f8bf3527d5e7e14a711079af0ff5df7304e8338c9d2c3aa6d4b6b6a6098784eb
- SSDEEP
  
  3072:aLCrbK4vn4pKkhfGN3JjL/cJ88Rmwa7Z7LUTf7OFe/J08:oaGmZk9IL0BQ517LKxxz
Score

10^/10

stealc voov stealer discovery
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcvoovstealer

behavioral2

stealcvoovdiscoverystealer