strela | 994f37d65c140a2040a996ce3ba35b0a3fa47ce1b23edb3762fad4f8b7399433 | Triage

Sharing

General

Target

abc123.zip
Size

1MB
Sample

230821-x1mpmahc9x
MD5

15df8facdb094e6cb4740a6ebbe6d2a5
SHA1

393825edc709bc321324dee29bb8b4d731f88c05
SHA256

994f37d65c140a2040a996ce3ba35b0a3fa47ce1b23edb3762fad4f8b7399433
SHA512

0fb0a725bc22cc6ae18ed2090473c95e0223cd7b5fd0a8684f5ffa996d46ef33e77b8eeabc855f65876b5172589e086afaf91d3aee397382d8cea674215d088f
SSDEEP

49152:v1TgOYYqFHT7YWnXBDh72QU6FdBQMGcR4dAR4r:ZBY5HoWx3FXQMGA4+R4r

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

193.109.85.77

Targets

- Target
  
  233842306724187.js
- Size
  
  5MB
- MD5
  
  11caeda58fe2f23f69385fe4c1d72979
- SHA1
  
  4451445779688b053ab77a27015c3ccd8c2dd3b9
- SHA256
  
  840248cb506c2c4f032ed5e94010a2473cf5654cfddedd11dd84aff1c5f8160d
- SHA512
  
  de1215e280fee584b02898e4c16b51d72bccbc809450c47a8d514d05ec3bf4a03d5d156cd3012b37a90bfb558a8f67d608fd897fd9ec84d6468600672136183b
- SSDEEP
  
  24576:hpDcmj6A18Kc9IYgpgm9EwXFn6E7Tx1LvWqucch/T6JrYDrhgfUCQQCPHQisyxM3:vxWyc9CVZ6refdpe6ISiP1E5UbUh
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2