strela | f7014b7fb1932f07dada4879b5368afe144ca03df046a0573a0d5c4a5fbecaba | Triage

Sharing

General

Target

f7014b7fb1932f07dada4879b5368afe144ca03df046a0573a0d5c4a5fbecabajs_JC.js
Size

333KB
Sample

230815-tqwb8sdg3x
MD5

369fb2cf1cb2dcedd67f9340ce47b95c
SHA1

7074e9849057a5e4ae7debf7b9e9156ed38f654d
SHA256

f7014b7fb1932f07dada4879b5368afe144ca03df046a0573a0d5c4a5fbecaba
SHA512

a7ef8924e368e4caf2d3200143f75754733eb2db087bffc8dea6a0b03fbe04fe5edecfa4268e169ca66b9570a218dc2d17da3c4533cdb1b849be50eeda74d55d
SSDEEP

6144:+k6LXBrAkN2wqug9iX3FOvcAiogR8WorQGGKdLdyNmkzSF9jiKAOtJfgwvs48WFM:+pAa2wqug9iHFOvcAiogR8WorQGGKdL0

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

91.215.85.209

Targets

- Target
  
  f7014b7fb1932f07dada4879b5368afe144ca03df046a0573a0d5c4a5fbecabajs_JC.js
- Size
  
  333KB
- MD5
  
  369fb2cf1cb2dcedd67f9340ce47b95c
- SHA1
  
  7074e9849057a5e4ae7debf7b9e9156ed38f654d
- SHA256
  
  f7014b7fb1932f07dada4879b5368afe144ca03df046a0573a0d5c4a5fbecaba
- SHA512
  
  a7ef8924e368e4caf2d3200143f75754733eb2db087bffc8dea6a0b03fbe04fe5edecfa4268e169ca66b9570a218dc2d17da3c4533cdb1b849be50eeda74d55d
- SSDEEP
  
  6144:+k6LXBrAkN2wqug9iX3FOvcAiogR8WorQGGKdLdyNmkzSF9jiKAOtJfgwvs48WFM:+pAa2wqug9iHFOvcAiogR8WorQGGKdL0
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2