strela | 91b3f6f15b629ec1145fd59c9dfd40b736a9809b4b4cbf76bbabbf9ce4014912 | Triage

Submit
Reports

Overview

overview

Static

static

1

rrr.txt

windows7-x64

7

rrr.txt

windows10-2004-x64

Sharing

General

Target

rrr.txt
Size

78B
Sample

230820-lzyjysfh9x
MD5

d15daabad874b7be048651c540cdd8b1
SHA1

255d9743ffb03abdae826f61e65f3ffeb9f5adc4
SHA256

91b3f6f15b629ec1145fd59c9dfd40b736a9809b4b4cbf76bbabbf9ce4014912
SHA512

d5ebf4e5f25703a7ddd0fdf6f30a4ffba94e61250c378f435ba389d39711def0a08219cac6c088da2c54bc059d647497fac15f2e7618f1523ed3737af7e3ac43

Score

10^/10

strela persistence stealer

Static task

static1

Behavioral task

behavioral1

Sample

rrr.txt

Resource

win7-20230712-en

windows7-x64

13 signatures

1800 seconds

Behavioral task

behavioral2

Sample

rrr.txt

Resource

win10v2004-20230703-en

strela persistence stealer

windows10-2004-x64

19 signatures

1800 seconds

Malware Config

Targets

- Target
  
  rrr.txt
- Size
  
  78B
- MD5
  
  d15daabad874b7be048651c540cdd8b1
- SHA1
  
  255d9743ffb03abdae826f61e65f3ffeb9f5adc4
- SHA256
  
  91b3f6f15b629ec1145fd59c9dfd40b736a9809b4b4cbf76bbabbf9ce4014912
- SHA512
  
  d5ebf4e5f25703a7ddd0fdf6f30a4ffba94e61250c378f435ba389d39711def0a08219cac6c088da2c54bc059d647497fac15f2e7618f1523ed3737af7e3ac43
Score

10^/10

strela persistence stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

strelapersistencestealer

© 2018-2023

Terms | Privacy