stealc | 11ffe5966d695a121b04a77997f16adbf12233d70adc0666049c21a311f25cfe | Triage

Sharing

General

Target

1628-3-0x0000000000380000-0x0000000000A29000-memory.dmp
Size

6.7MB
Sample

250226-yhyjva1ms9
MD5

7393b13f0ab92d466fb64e8ff34bd616
SHA1

494b407bcff39a91e8a256a4802b4b27ce791563
SHA256

11ffe5966d695a121b04a77997f16adbf12233d70adc0666049c21a311f25cfe
SHA512

93e2c6b24d375272a5657a4144d64fdc31a6129e2b77afc223337278d2ecce4ba18831d3ede1f02071db4dc2941d1ae8cfbb962eb637d8a7ae4653a23e7a00cb
SSDEEP

98304:7o0qefzfSl264NqfwiMaWesR74ZoMeJL4aZXai+BxSu1l:Uf7rDHsiWMJea9xJ

Score

10^/10

stealc reno discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

reno

C2

http://185.215.113.115

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  1628-3-0x0000000000380000-0x0000000000A29000-memory.dmp
- Size
  
  6.7MB
- MD5
  
  7393b13f0ab92d466fb64e8ff34bd616
- SHA1
  
  494b407bcff39a91e8a256a4802b4b27ce791563
- SHA256
  
  11ffe5966d695a121b04a77997f16adbf12233d70adc0666049c21a311f25cfe
- SHA512
  
  93e2c6b24d375272a5657a4144d64fdc31a6129e2b77afc223337278d2ecce4ba18831d3ede1f02071db4dc2941d1ae8cfbb962eb637d8a7ae4653a23e7a00cb
- SSDEEP
  
  98304:7o0qefzfSl264NqfwiMaWesR74ZoMeJL4aZXai+BxSu1l:Uf7rDHsiWMJea9xJ
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer