stealc | ba96abb3446b4d949fdb60cf005001220bcf46376001017e1bf1f508daf7fbb2 | Triage

Submit
Reports

Overview

overview

Static

static

1884-2-0x0...ry.exe

windows7-x64

1884-2-0x0...ry.exe

windows10-2004-x64

Sharing

General

Target

1884-2-0x0000000000610000-0x000000000121B000-memory.dmp
Size

12.0MB
Sample

240701-k6zvxswglj
MD5

f396341fd0eacf615f607fd1b7786ef6
SHA1

d2cdaa36ebc1f72a897d2fe1ed097efc71cdde11
SHA256

ba96abb3446b4d949fdb60cf005001220bcf46376001017e1bf1f508daf7fbb2
SHA512

85f24986d95e5f507d696f38ceeaf30f774faacd7321fa8e55077cc9877b3ca2e81b9daf1bf881ca7b4d6c5b92120ad346c5d801eac629a73807055d6ad9a98e
SSDEEP

98304:Ru+cXgxPeiim1xWZGK38+qy1wkxTxOS8E3eBZ5smCDWbm:k+/kq2KyZuBZ5s6m

Score

10^/10

stealc default stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1884-2-0x0000000000610000-0x000000000121B000-memory.exe

Resource

win7-20240508-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

1884-2-0x0000000000610000-0x000000000121B000-memory.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

stealc

Botnet

default

C2

http://85.28.47.4

Attributes

url_path
/920475a59bac849d.php

Targets

- Target
  
  1884-2-0x0000000000610000-0x000000000121B000-memory.dmp
- Size
  
  12.0MB
- MD5
  
  f396341fd0eacf615f607fd1b7786ef6
- SHA1
  
  d2cdaa36ebc1f72a897d2fe1ed097efc71cdde11
- SHA256
  
  ba96abb3446b4d949fdb60cf005001220bcf46376001017e1bf1f508daf7fbb2
- SHA512
  
  85f24986d95e5f507d696f38ceeaf30f774faacd7321fa8e55077cc9877b3ca2e81b9daf1bf881ca7b4d6c5b92120ad346c5d801eac629a73807055d6ad9a98e
- SSDEEP
  
  98304:Ru+cXgxPeiim1xWZGK38+qy1wkxTxOS8E3eBZ5smCDWbm:k+/kq2KyZuBZ5s6m
Score

10^/10

stealc stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy