strela | 87f3de379c3c126d924791f31cec59d4eb5cbe5b63f1a307b11890dafaf433ff | Triage

Sharing

General

Target

87f3de379c3c126d924791f31cec59d4eb5cbe5b63f1a307b11890dafaf433ff_JC.js
Size

4.0MB
Sample

230824-wt8svagb8x
MD5

7d7c79af0ea8ddd5ba251d0f9a34667e
SHA1

09a1563b1cc9b092cb0027d06d633d8273a28ed6
SHA256

87f3de379c3c126d924791f31cec59d4eb5cbe5b63f1a307b11890dafaf433ff
SHA512

2fbdc59181d61cca4a513c4a94fd29edb59b2d11a763040b75fd837759e3767f0d483211a2b8c0f3dfee797f3cb651374d413afe80d88a7761db27f8060685b7
SSDEEP

24576:7kYjISU4NCYkYuEhMml0/WoLScl7ADF+ToUwueEYV+WeEzJooRBADu/E1bpfFUN6:7ktRp4xutEmUeUbUJ

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

193.109.85.77

Targets

- Target
  
  87f3de379c3c126d924791f31cec59d4eb5cbe5b63f1a307b11890dafaf433ff_JC.js
- Size
  
  4.0MB
- MD5
  
  7d7c79af0ea8ddd5ba251d0f9a34667e
- SHA1
  
  09a1563b1cc9b092cb0027d06d633d8273a28ed6
- SHA256
  
  87f3de379c3c126d924791f31cec59d4eb5cbe5b63f1a307b11890dafaf433ff
- SHA512
  
  2fbdc59181d61cca4a513c4a94fd29edb59b2d11a763040b75fd837759e3767f0d483211a2b8c0f3dfee797f3cb651374d413afe80d88a7761db27f8060685b7
- SSDEEP
  
  24576:7kYjISU4NCYkYuEhMml0/WoLScl7ADF+ToUwueEYV+WeEzJooRBADu/E1bpfFUN6:7ktRp4xutEmUeUbUJ
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2