stealc | 616f859fea5ae4ff405ccb08cf4ed27eb2fce5d7e11e4b64f4b72c68781b8dd3 | Triage

Sharing

General

Target

3924-47-0x0000000000FB0000-0x000000000149B000-memory.dmp
Size

4.9MB
Sample

241227-mmy6dsvjfk
MD5

726c670d380c2b647548a9931ffcc16e
SHA1

00a7dfe999949e46597d166e106ca6fe2d35afe0
SHA256

616f859fea5ae4ff405ccb08cf4ed27eb2fce5d7e11e4b64f4b72c68781b8dd3
SHA512

273b20e3247fdb79aaf1dd4a2a85cc7001aa8d9f153aede9f5fada41ca593198dd5082c7077bb4ec68674d1e89a49a77ae2cc3bcdd0097e68c67eed6d740a994
SSDEEP

49152:BzEuVicWbkLJ/CcThsPfb30l3ztJ/Yr+Yr:BEiicWbkLJ/CcSXbWzzwrn

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  3924-47-0x0000000000FB0000-0x000000000149B000-memory.dmp
- Size
  
  4.9MB
- MD5
  
  726c670d380c2b647548a9931ffcc16e
- SHA1
  
  00a7dfe999949e46597d166e106ca6fe2d35afe0
- SHA256
  
  616f859fea5ae4ff405ccb08cf4ed27eb2fce5d7e11e4b64f4b72c68781b8dd3
- SHA512
  
  273b20e3247fdb79aaf1dd4a2a85cc7001aa8d9f153aede9f5fada41ca593198dd5082c7077bb4ec68674d1e89a49a77ae2cc3bcdd0097e68c67eed6d740a994
- SSDEEP
  
  49152:BzEuVicWbkLJ/CcThsPfb30l3ztJ/Yr+Yr:BEiicWbkLJ/CcSXbWzzwrn
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdiscoverystealer

behavioral2

stealcdiscoverystealer