General

  • Target

    12855892225180.js

  • Size

    10.6MB

  • Sample

    231203-t1zgmsdc5w

  • MD5

    4d52237da434f7b704e1b182069b12a0

  • SHA1

    672bba784a1ab2429831c904fdec608d244fa928

  • SHA256

    d0f877741efd98132804306e1e0d25af6cd5ef226be208a7ba6d7008a46537f1

  • SHA512

    c26c172785f8365ad8207c6b531a2b7fe65c06c83af17f09b7a97ed9b760c7672563ae134fe2c6b6b3fe6659bce40a51a31e0a2a43a1d13f7a214b461800e883

  • SSDEEP

    49152:rqc6P0PhMyWShuD7xPCwou8K1p+WR5hCB4Jq6u1nHtdWK/duHDUbU2:qc1

Score
10/10

Malware Config

Extracted

Family

strela

C2

193.109.85.77

Targets

    • Target

      12855892225180.js

    • Size

      10.6MB

    • MD5

      4d52237da434f7b704e1b182069b12a0

    • SHA1

      672bba784a1ab2429831c904fdec608d244fa928

    • SHA256

      d0f877741efd98132804306e1e0d25af6cd5ef226be208a7ba6d7008a46537f1

    • SHA512

      c26c172785f8365ad8207c6b531a2b7fe65c06c83af17f09b7a97ed9b760c7672563ae134fe2c6b6b3fe6659bce40a51a31e0a2a43a1d13f7a214b461800e883

    • SSDEEP

      49152:rqc6P0PhMyWShuD7xPCwou8K1p+WR5hCB4Jq6u1nHtdWK/duHDUbU2:qc1

    Score
    10/10
    • Strela

      An info stealer targeting mail credentials first seen in late 2022.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks