stealc | 352ce1f8d36bac707d61bbb37f1397c2ec2ef74639c373af561016f8ccddad33 | Triage

Sharing

General

Target

2484-49-0x00000000000C0000-0x00000000005B3000-memory.dmp
Size

4.9MB
Sample

241227-kewdestmaj
MD5

67dd530d06bed7081266c6998b79063f
SHA1

95809960a71076fa68ac710e7d2c32512edac575
SHA256

352ce1f8d36bac707d61bbb37f1397c2ec2ef74639c373af561016f8ccddad33
SHA512

8fd7276f229b0ce04d9d06befa80272a5fe8d71c550fd83ec2ec8243c02df1d595d500be5e60c1efdc13ff7401f3cb17de02155ad9a98e2ee67c48a5eaccb280
SSDEEP

24576:p5S2vEIHfZ3bodproPh1rZ3oINLUv0QQ41y73I+8YL0wuwbkw/PHUSz+IIG2yRzb:h9lwpKJ31NGCYIoEAG2yAR08zf3

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2484-49-0x00000000000C0000-0x00000000005B3000-memory.dmp
- Size
  
  4.9MB
- MD5
  
  67dd530d06bed7081266c6998b79063f
- SHA1
  
  95809960a71076fa68ac710e7d2c32512edac575
- SHA256
  
  352ce1f8d36bac707d61bbb37f1397c2ec2ef74639c373af561016f8ccddad33
- SHA512
  
  8fd7276f229b0ce04d9d06befa80272a5fe8d71c550fd83ec2ec8243c02df1d595d500be5e60c1efdc13ff7401f3cb17de02155ad9a98e2ee67c48a5eaccb280
- SSDEEP
  
  24576:p5S2vEIHfZ3bodproPh1rZ3oINLUv0QQ41y73I+8YL0wuwbkw/PHUSz+IIG2yRzb:h9lwpKJ31NGCYIoEAG2yAR08zf3
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdiscoverystealer

behavioral2

stealcdiscoverystealer