stealc | 7d1cac7fd858119fe2c0e0223dcb6bd69c6dc233746aee686f2a36c77b0bbde8 | Triage

Sharing

General

Target

2ccf9348d04d5badaf407aa1a7badd928e4f3cc8850b4854f087891494842d97.zip
Size

541KB
Sample

250204-qng52synep
MD5

240f77d7e6f323ee2bda6ea964b5d80c
SHA1

0cedfcb138c1bca297ee5ae5d6ad020d15901fa4
SHA256

7d1cac7fd858119fe2c0e0223dcb6bd69c6dc233746aee686f2a36c77b0bbde8
SHA512

f005e3de6acbd6a69c2d262ffecaa00e5f49b931db85dcd53fb9da0c400139a730fcfdbd60433df41a2683a9b65ccd06a61d09514e85e89924941d2bfaed0e65
SSDEEP

12288:vl39ukrb1C23DT3g78bU6B/Ur5nhx+/A1kytajQZV+:v19uk82nQ784uqRPi6tiQv+

Score

10^/10

stealc logsdiller discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

LogsDiller

C2

http://95.215.207.66

Attributes

url_path
/f4e83cc9bf3bad72.php

Targets

- Target
  
  2ccf9348d04d5badaf407aa1a7badd928e4f3cc8850b4854f087891494842d97.exe
- Size
  
  684KB
- MD5
  
  2e9c6c612637dbcc20b4ed97411604fb
- SHA1
  
  debcde01b7272f9df5aeb0250f2d310f387371b4
- SHA256
  
  2ccf9348d04d5badaf407aa1a7badd928e4f3cc8850b4854f087891494842d97
- SHA512
  
  7ed165a09770d23eb64ca26bf5b5717488815fc50dd0a78dcf6fbc40d5635d3134d72ac6ef594ef0ff65288c7e86ffdd44a05bdce68c6b0c4d21211fe24f6d90
- SSDEEP
  
  12288:dhtOPg1jnJNUk9ISSNa66JKzUyQCv/KCaBpihFs/WzEeyE:dh2g1jJNUunaBzU1+a/feyE
Score

10^/10

stealc logsdiller discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealclogsdillerdiscoverystealer