strela | 1608f2ce2bbb935d1275061be853b1f978251d68de7054ca24e0d4f956a81d8c | Triage

Sharing

General

Target

f3b0e72e66e1324a2ab94285f069501a.bin
Size

1MB
Sample

230830-c5xp6shd24
MD5

70e1877f7006c637814968b26d29fa9b
SHA1

e803d35ec715fa275344a5baf6529b80799e240d
SHA256

1608f2ce2bbb935d1275061be853b1f978251d68de7054ca24e0d4f956a81d8c
SHA512

230733dc3a9316f85ae11d6a62ac30ef19fc4b6399b129a4d634a44e70eb74d5a319994ab883494d1291ef225b49a2f9ee494e7149bac5f9bab8e90cf97f7c70
SSDEEP

24576:gVYi4F+YEhTYaiswcqUI2IdH0QDo3Ujdf57+s2+pc61mOCAn3N7HslsILfUu8KRy:cIF+YsYacUI2IdRc3UjL9Vpc61X9jEL4

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

193.109.85.77

Targets

- Target
  
  7c796e8277fa41ad68ee1a5bed21591ddac49195de6285b628e9d6265ecde2ca.js
- Size
  
  3MB
- MD5
  
  f3b0e72e66e1324a2ab94285f069501a
- SHA1
  
  d96cb05ee0d622d3cab1c163bddc5e1d8e5280d2
- SHA256
  
  7c796e8277fa41ad68ee1a5bed21591ddac49195de6285b628e9d6265ecde2ca
- SHA512
  
  9c2847a3f9bda12f75afbb4c46cbd8c00177f290722ffe83f819fea9802d6d896c719f0910ca1eb4192a09c786d3134f504e54a93df9bb77b9d82f899b9db197
- SSDEEP
  
  49152:KHEsW6XqiNJhdW2QwkV++sNUrw2CatUbUt:vcC
Score

10^/10

strela stealer
- Strela
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2