strela | 79ae7e5dbd40a9ecda0e69bdb316eb0e567a677674ceb722c78050eec9bbfa32 | Triage

Sharing

General

Target

12519112862926.js
Size

938KB
Sample

230818-m188hshb49
MD5

77a5ba6c5ee3c978093d02e0300afd4e
SHA1

2b2957ac884bce33da3842b170e8838d56cdefbb
SHA256

79ae7e5dbd40a9ecda0e69bdb316eb0e567a677674ceb722c78050eec9bbfa32
SHA512

efa2c1cdc288e7b31d27d158a70437505e02188c0a84769d4abfdc278d9d09a0a9cffb122ae453a94af1d919dee7ce421c6cd83bac29616179a428aff7910170
SSDEEP

12288:fVUoRLKdkTvQ7eoznfNn3dJPHJogsF0ZDANdfs0Y5eccTpk9WWsoT:fVRu8IPzfNnNJPHugsF0ZDYs01m9We

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

91.215.85.209

Targets

- Target
  
  12519112862926.js
- Size
  
  938KB
- MD5
  
  77a5ba6c5ee3c978093d02e0300afd4e
- SHA1
  
  2b2957ac884bce33da3842b170e8838d56cdefbb
- SHA256
  
  79ae7e5dbd40a9ecda0e69bdb316eb0e567a677674ceb722c78050eec9bbfa32
- SHA512
  
  efa2c1cdc288e7b31d27d158a70437505e02188c0a84769d4abfdc278d9d09a0a9cffb122ae453a94af1d919dee7ce421c6cd83bac29616179a428aff7910170
- SSDEEP
  
  12288:fVUoRLKdkTvQ7eoznfNn3dJPHJogsF0ZDANdfs0Y5eccTpk9WWsoT:fVRu8IPzfNnNJPHugsF0ZDYs01m9We
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2