stealc | cd77eb5b4cb6e16714fd182b4627af7eca7ebb46b1953bb914912b63a019abb3 | Triage

Sharing

General

Target

2056-3-0x0000000000F40000-0x00000000015CB000-memory.dmp
Size

6.5MB
Sample

250225-m72f9avj17
MD5

42c0617e9ed6f26b6805b82c6ae68780
SHA1

c7b85f1b5ac13914894e10b85f0bb47ff0090e29
SHA256

cd77eb5b4cb6e16714fd182b4627af7eca7ebb46b1953bb914912b63a019abb3
SHA512

224798643220c34e32653ccdc54dea828579a82f76f19400b9e0a67faff8fedd0bba7fd4513e43112f19251d3651cbfc45e2c444915ab2be6647d0fa0af5e32e
SSDEEP

98304:FbJlCUKyxRz6z3XQeWbERU41O8vcQ7pg/dsNLdrD:+AeuERU+Oj6Ldr

Score

10^/10

stealc reno discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

reno

C2

http://185.215.113.115

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2056-3-0x0000000000F40000-0x00000000015CB000-memory.dmp
- Size
  
  6.5MB
- MD5
  
  42c0617e9ed6f26b6805b82c6ae68780
- SHA1
  
  c7b85f1b5ac13914894e10b85f0bb47ff0090e29
- SHA256
  
  cd77eb5b4cb6e16714fd182b4627af7eca7ebb46b1953bb914912b63a019abb3
- SHA512
  
  224798643220c34e32653ccdc54dea828579a82f76f19400b9e0a67faff8fedd0bba7fd4513e43112f19251d3651cbfc45e2c444915ab2be6647d0fa0af5e32e
- SSDEEP
  
  98304:FbJlCUKyxRz6z3XQeWbERU41O8vcQ7pg/dsNLdrD:+AeuERU+Oj6Ldr
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer