Overview

overview

10

Static

static

10

2620-3-0x0...ry.exe

windows7-x64

2620-3-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2620-3-0x00000000003D0000-0x00000000008CB000-memory.dmp

  • Size

    5.0MB

  • Sample

    241226-1wnynssmcr

  • MD5

    f8c4998a702cbd052bb6a0a541e6cfba

  • SHA1

    2c6a5f02fdcc5ae22e2852b81c4192ecdfe006aa

  • SHA256

    0ac7a58f1f686c39d1d7db11fb4a823b9c86873f64b28d8946956b6db8f49a64

  • SHA512

    830c8baf07f8d5c83cec553cafdb4f370f9a0ad00d0cf30e12735582d065fa1a77eef3cc763064225d36a40e1d9a65c6da22b1b63effef39a334fe720a968e57

  • SSDEEP

    24576:RMxVEPQARUNHpLmwuSg7f3Lw26xXyJLwwPEvU87BmGsESvRxn21BRwM5WOvvc2z1:WrxdHp6wuSg7Dw2lJLw+tTP2j5ntuUk

Score
10/10
stealcstok

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes
  • url_path

    /c4becf79229cb002.php

Targets

    • Target

      2620-3-0x00000000003D0000-0x00000000008CB000-memory.dmp

    • Size

      5.0MB

    • MD5

      f8c4998a702cbd052bb6a0a541e6cfba

    • SHA1

      2c6a5f02fdcc5ae22e2852b81c4192ecdfe006aa

    • SHA256

      0ac7a58f1f686c39d1d7db11fb4a823b9c86873f64b28d8946956b6db8f49a64

    • SHA512

      830c8baf07f8d5c83cec553cafdb4f370f9a0ad00d0cf30e12735582d065fa1a77eef3cc763064225d36a40e1d9a65c6da22b1b63effef39a334fe720a968e57

    • SSDEEP

      24576:RMxVEPQARUNHpLmwuSg7f3Lw26xXyJLwwPEvU87BmGsESvRxn21BRwM5WOvvc2z1:WrxdHp6wuSg7Dw2lJLw+tTP2j5ntuUk

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks