strela | 70c8ca959e5216ef50ea1e3f81daff0e4a44340a1360f0b465291a9f3b267aee | Triage

Sharing

General

Target

219381669531485.js
Size

5MB
Sample

230820-kfrrmadh87
MD5

c48030ec7d180b8b6ed355d75f94b76c
SHA1

4a548b5a17d55ceff7c3268c1b2c1d615d52b7c0
SHA256

70c8ca959e5216ef50ea1e3f81daff0e4a44340a1360f0b465291a9f3b267aee
SHA512

40d4c515adb964aae455cb3382760747aacbd23534d816d43d96871e134c355647041a9acec766f29e224bc39461b396ecd05374460cb1f67984d4b1f42a0df8
SSDEEP

24576:An7QIc6OHEPXYeJUqAdCt4eXZv+JPikt9Zz4RoAZYF81mjcVybyC9bzHX++6KYlV:qkqi8u5uHVSPs/daUbU8

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

193.109.85.77

Targets

- Target
  
  219381669531485.js
- Size
  
  5MB
- MD5
  
  c48030ec7d180b8b6ed355d75f94b76c
- SHA1
  
  4a548b5a17d55ceff7c3268c1b2c1d615d52b7c0
- SHA256
  
  70c8ca959e5216ef50ea1e3f81daff0e4a44340a1360f0b465291a9f3b267aee
- SHA512
  
  40d4c515adb964aae455cb3382760747aacbd23534d816d43d96871e134c355647041a9acec766f29e224bc39461b396ecd05374460cb1f67984d4b1f42a0df8
- SSDEEP
  
  24576:An7QIc6OHEPXYeJUqAdCt4eXZv+JPikt9Zz4RoAZYF81mjcVybyC9bzHX++6KYlV:qkqi8u5uHVSPs/daUbU8
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2