stealc | 8a9d3441849ec787938f922c839ae8a8ee8e48526e5d73990861c1e1f0042350 | Triage

Sharing

General

Target

1896-43-0x0000000000A10000-0x00000000010A5000-memory.dmp
Size

6.6MB
Sample

250226-znzjrstj19
MD5

6d63608289f7766d72d8541da6b4bb06
SHA1

e3acfc7baae2c1d3ad7e4396444d45b74cbf3887
SHA256

8a9d3441849ec787938f922c839ae8a8ee8e48526e5d73990861c1e1f0042350
SHA512

8f8c6ef83fe03d388adc1cbc65c84a4f31b2b4e65aeef3cdff731935fdc15f15b89ae8ff72bcab8ccf81cee6354fd639e7dfe905dd5c3fc04cf636d5591ccd03
SSDEEP

98304:votKZenpM/LhAfR334x9c4ZIzmDivfEA1NAdSFB:+3ox7IKzA1NAgF

Score

10^/10

stealc reno discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

reno

C2

http://185.215.113.115

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  1896-43-0x0000000000A10000-0x00000000010A5000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  6d63608289f7766d72d8541da6b4bb06
- SHA1
  
  e3acfc7baae2c1d3ad7e4396444d45b74cbf3887
- SHA256
  
  8a9d3441849ec787938f922c839ae8a8ee8e48526e5d73990861c1e1f0042350
- SHA512
  
  8f8c6ef83fe03d388adc1cbc65c84a4f31b2b4e65aeef3cdff731935fdc15f15b89ae8ff72bcab8ccf81cee6354fd639e7dfe905dd5c3fc04cf636d5591ccd03
- SSDEEP
  
  98304:votKZenpM/LhAfR334x9c4ZIzmDivfEA1NAdSFB:+3ox7IKzA1NAgF
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer