strela | fdba0ea0eab9b3bb04c37a9104aa644604530c84e83e1da41664d6d82cbaed44 | Triage

Sharing

General

Target

fdba0ea0eab9b3bb04c37a9104aa644604530c84e83e1da41664d6d82cbaed44js_JC.js
Size

708KB
Sample

230815-v6pp3ace78
MD5

67e0dddcd9189c1bc8acc9862b63f6b7
SHA1

c9efa80b229a177b520bab0dcac92a2566f769e4
SHA256

fdba0ea0eab9b3bb04c37a9104aa644604530c84e83e1da41664d6d82cbaed44
SHA512

a07cd99a9d8600ef11a625c119056604908cdb580d0ee7a04904695cd5cdc6c1b14a349d751ab768d5f04dc571d59de73c7fe6d0e514bafe681d4bfddeea634c
SSDEEP

12288:k516xpwR1Zy8SQ7NsBAr7Aplx/rV+2KLEKBvfmiTs9/lJLEGMx:k5ExpwHw7Q7NsBArkplXTKQMj0LEJx

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

91.215.85.209

Targets

- Target
  
  fdba0ea0eab9b3bb04c37a9104aa644604530c84e83e1da41664d6d82cbaed44js_JC.js
- Size
  
  708KB
- MD5
  
  67e0dddcd9189c1bc8acc9862b63f6b7
- SHA1
  
  c9efa80b229a177b520bab0dcac92a2566f769e4
- SHA256
  
  fdba0ea0eab9b3bb04c37a9104aa644604530c84e83e1da41664d6d82cbaed44
- SHA512
  
  a07cd99a9d8600ef11a625c119056604908cdb580d0ee7a04904695cd5cdc6c1b14a349d751ab768d5f04dc571d59de73c7fe6d0e514bafe681d4bfddeea634c
- SSDEEP
  
  12288:k516xpwR1Zy8SQ7NsBAr7Aplx/rV+2KLEKBvfmiTs9/lJLEGMx:k5ExpwHw7Q7NsBArkplXTKQMj0LEJx
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2