stealc | ba8c89222dfd6bccca6a483422282a7e29566887fc2a20296689dd9733d9ad3e | Triage

Sharing

General

Target

2472-75-0x0000000000E50000-0x00000000014CC000-memory.dmp
Size

6.5MB
Sample

250226-zq1jvatkz6
MD5

00a4fdb61baa7e189b86240462aefcca
SHA1

58ae0ee6c34439ea8c7f0dba632fe237fbbb6f2f
SHA256

ba8c89222dfd6bccca6a483422282a7e29566887fc2a20296689dd9733d9ad3e
SHA512

388cc02a15d37c1fc09e50a634415e8f88936494c37fe166c48152f5f1b81222e6af5a97c903c0ab8bb94dea3b9b024cc778037e8de66f35de71d803bb5a5872
SSDEEP

98304:TFKtY7cSNBSMGT3dTH6rp9cH6Wn1qDZF:03dKkH6Wn1qD

Score

10^/10

stealc reno discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

reno

C2

http://185.215.113.115

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2472-75-0x0000000000E50000-0x00000000014CC000-memory.dmp
- Size
  
  6.5MB
- MD5
  
  00a4fdb61baa7e189b86240462aefcca
- SHA1
  
  58ae0ee6c34439ea8c7f0dba632fe237fbbb6f2f
- SHA256
  
  ba8c89222dfd6bccca6a483422282a7e29566887fc2a20296689dd9733d9ad3e
- SHA512
  
  388cc02a15d37c1fc09e50a634415e8f88936494c37fe166c48152f5f1b81222e6af5a97c903c0ab8bb94dea3b9b024cc778037e8de66f35de71d803bb5a5872
- SSDEEP
  
  98304:TFKtY7cSNBSMGT3dTH6rp9cH6Wn1qDZF:03dKkH6Wn1qD
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer