strela | 8c60130efba6fd8225f12b6f1281096f7e9c91742e0237a2fecbfa6d7dd3dea3 | Triage

Sharing

General

Target

133051297412740.js
Size

3MB
Sample

230818-mfdacagh62
MD5

d4f3ca0a7c492afdc30c1c2a1a44f21a
SHA1

373c45d5116454b4879d7fa3dfdf2f2a66c14837
SHA256

8c60130efba6fd8225f12b6f1281096f7e9c91742e0237a2fecbfa6d7dd3dea3
SHA512

057c3683ed63450fc9e95e1a15eb3d367edfb82cc3b9409ea1d8bf4d6f5cd8a4888c72b105a43c03865330ca6d5610b714604b059a7942f0db58e5e5848d4cb6
SSDEEP

24576:j+7vamXRDsyzleOQjxYkMvN/B3aQtq6OBNFkCvQd/LKo5tHdQpuGMiGLLOZDb+XA:mCmX0jx2tqpNHMRx8uXpLUbUM

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

193.109.85.77

Targets

- Target
  
  133051297412740.js
- Size
  
  3MB
- MD5
  
  d4f3ca0a7c492afdc30c1c2a1a44f21a
- SHA1
  
  373c45d5116454b4879d7fa3dfdf2f2a66c14837
- SHA256
  
  8c60130efba6fd8225f12b6f1281096f7e9c91742e0237a2fecbfa6d7dd3dea3
- SHA512
  
  057c3683ed63450fc9e95e1a15eb3d367edfb82cc3b9409ea1d8bf4d6f5cd8a4888c72b105a43c03865330ca6d5610b714604b059a7942f0db58e5e5848d4cb6
- SSDEEP
  
  24576:j+7vamXRDsyzleOQjxYkMvN/B3aQtq6OBNFkCvQd/LKo5tHdQpuGMiGLLOZDb+XA:mCmX0jx2tqpNHMRx8uXpLUbUM
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2