stealc | d6c9f6d5d2894538807cf05bfd34d8942d45dc7dadcf352f02c195538fac3c71 | Triage

Sharing

General

Target

1608-3-0x0000000000A50000-0x0000000000F39000-memory.dmp
Size

4.9MB
Sample

241226-s8texszkar
MD5

01da79e459823c922d60ccf5e99fe386
SHA1

b706764b07a49729d344c9aeddcfd9411453b04a
SHA256

d6c9f6d5d2894538807cf05bfd34d8942d45dc7dadcf352f02c195538fac3c71
SHA512

71e8e871b7bc1207c7dffcd49bf70d90f88a805ee7b003032ef56bec84a7d5f2ffcdebe03c6cd0ba0e311c9fe2ffa8ba95c1a10c0279e9e3b0c20bfb3d1bbad1
SSDEEP

24576:ttduO/83pTsMXL4bn2uKL2yRiU0SM0vH4t51ZdwYQtqDK3MWQDK2DFJrVj0dheng:rJ/iCn+641YpKkXDGdb2db8CHHa+8

Score

10^/10

stealc stok

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  1608-3-0x0000000000A50000-0x0000000000F39000-memory.dmp
- Size
  
  4.9MB
- MD5
  
  01da79e459823c922d60ccf5e99fe386
- SHA1
  
  b706764b07a49729d344c9aeddcfd9411453b04a
- SHA256
  
  d6c9f6d5d2894538807cf05bfd34d8942d45dc7dadcf352f02c195538fac3c71
- SHA512
  
  71e8e871b7bc1207c7dffcd49bf70d90f88a805ee7b003032ef56bec84a7d5f2ffcdebe03c6cd0ba0e311c9fe2ffa8ba95c1a10c0279e9e3b0c20bfb3d1bbad1
- SSDEEP
  
  24576:ttduO/83pTsMXL4bn2uKL2yRiU0SM0vH4t51ZdwYQtqDK3MWQDK2DFJrVj0dheng:rJ/iCn+641YpKkXDGdb2db8CHHa+8
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2