stealc | fc88cf04aef517e23b8fc7e9ad2aafb470592d538076f76197d1c6460bdaaf08 | Triage

Sharing

General

Target

1132-3-0x0000000001120000-0x0000000001618000-memory.dmp
Size

5.0MB
Sample

241231-qcfg3stphr
MD5

2c58babc19a267b04f4b5b8df5c80be1
SHA1

d833cf1328d489f1f436417d69121dee512860f2
SHA256

fc88cf04aef517e23b8fc7e9ad2aafb470592d538076f76197d1c6460bdaaf08
SHA512

7344b22fe1ac3930926555dbd31d8566cd94d41c4979365505dc37e756269f3284e102fd976bc8fdea241741e87190f726c47c5583ee57de2e2cdcdc78bfce79
SSDEEP

24576:59yXm9muDUrOhV3jVr9Elrd/Tt+Rk8VCdxNpSoeaICvE4LGkzJSU1SYke63b1cJp:BNhp5IrdmSheyJLt03b1O5B+R

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  1132-3-0x0000000001120000-0x0000000001618000-memory.dmp
- Size
  
  5.0MB
- MD5
  
  2c58babc19a267b04f4b5b8df5c80be1
- SHA1
  
  d833cf1328d489f1f436417d69121dee512860f2
- SHA256
  
  fc88cf04aef517e23b8fc7e9ad2aafb470592d538076f76197d1c6460bdaaf08
- SHA512
  
  7344b22fe1ac3930926555dbd31d8566cd94d41c4979365505dc37e756269f3284e102fd976bc8fdea241741e87190f726c47c5583ee57de2e2cdcdc78bfce79
- SSDEEP
  
  24576:59yXm9muDUrOhV3jVr9Elrd/Tt+Rk8VCdxNpSoeaICvE4LGkzJSU1SYke63b1cJp:BNhp5IrdmSheyJLt03b1O5B+R
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealcdiscoverystealer

behavioral2

stealcdiscoverystealer