← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
ThreatFox Hunt: Stealc IOCs - 2026-01-26
WHITE pduggusa 2026-01-26 Modified: 2026-02-25
13
IOCs
MEDIUM VOLUME
Automated ThreatFox hunt for Stealc indicators. 21 IOCs collected via Pattern 49 intelligence streaming. MITRE ATT&CK: T1555.003, T1539, T1528, T1005. Reference: https://analytics.dugganusa.com
stealcthreatfoxautomated-huntpattern-49dugganusastealercredential-theft
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Stealc
Indicators of Compromise (13)
All URL FileHash-SHA256 FileHash-MD5
TYPEINDICATORDESCRIPTIONCREATED
URL http://159.69.114.128/b5caa8f188054fc8.php Stealc botnet_cc - ThreatFox ID: 1736959 2026-01-26
URL http://178.16.54.140/4c716ef724024c23.php Stealc botnet_cc - ThreatFox ID: 1737022 2026-01-26
URL https://ultra4ktool.com Stealc botnet_cc - ThreatFox ID: 1737075 2026-01-26
URL http://45.156.87.65 Stealc botnet_cc - ThreatFox ID: 1737079 2026-01-26
FileHash-SHA256 1d0bf84e6e273bafbdc0444952f3a9539b186e91d12c8e74353cb0a439bbb40b Stealc payload - ThreatFox ID: 1737303 2026-01-26
FileHash-MD5 2877f3dcc58d4d42dc9f5220a0c910a2 Stealc payload - ThreatFox ID: 1737304 2026-01-26
FileHash-SHA256 b20c9dac7f4a3da31bc0a98d731112fa010bf2ed166e18d35a873121527661bb Stealc payload - ThreatFox ID: 1737330 2026-01-26
FileHash-MD5 d1cae4fe0df94e28b92841d7b18fae61 Stealc payload - ThreatFox ID: 1737331 2026-01-26
FileHash-SHA256 aeefae9a5162091ca000675cf8397bb7f4abc2e2589e6e2ae1f9f414c6a70bca Stealc payload - ThreatFox ID: 1737353 2026-01-26
FileHash-MD5 11b7c0ae414936abdc5ecb4a87f35027 Stealc payload - ThreatFox ID: 1737354 2026-01-26
FileHash-SHA256 79be87ad14b473f6ca727969014fa8cc27a8020200cf653096b6f77a0b331502 Stealc payload - ThreatFox ID: 1737374 2026-01-26
FileHash-MD5 588f54e7fc7a78414e0a8798c264b3cf Stealc payload - ThreatFox ID: 1737375 2026-01-26
URL http://138.226.236.67 Stealc botnet_cc - ThreatFox ID: 1737756 2026-01-26
References (2)
↗ https://analytics.dugganusa.com/api/v1/stix-feed/v2 ↗ https://threatfox.abuse.ch