General

  • Target

    bf9e5c7cb63893f8c6b0bb2269b781e3221813ae3786997be4ad013813599645js.js

  • Size

    1.8MB

  • Sample

    240111-v74klsdgc5

  • MD5

    a625477cd8baeebf1fa0e85792453406

  • SHA1

    59485e79a73daa014d55be29de8a835f4415a274

  • SHA256

    bf9e5c7cb63893f8c6b0bb2269b781e3221813ae3786997be4ad013813599645

  • SHA512

    e978ad92803ded8fdc08eec82f5ed7da8225840161d5f1155b3e8029d192f0916d2d539a65face6761d996f1c02633c11e242b27f9614545151dbc36a8b080ac

  • SSDEEP

    24576:Cti9XPgpR7cDuusqcekq1TDfVfmT/Ks9ldpvflKB7o7UbUz:OSzefZUbUz

Score
10/10

Malware Config

Extracted

Family

strela

C2

193.109.85.77

Targets

    • Target

      bf9e5c7cb63893f8c6b0bb2269b781e3221813ae3786997be4ad013813599645js.js

    • Size

      1.8MB

    • MD5

      a625477cd8baeebf1fa0e85792453406

    • SHA1

      59485e79a73daa014d55be29de8a835f4415a274

    • SHA256

      bf9e5c7cb63893f8c6b0bb2269b781e3221813ae3786997be4ad013813599645

    • SHA512

      e978ad92803ded8fdc08eec82f5ed7da8225840161d5f1155b3e8029d192f0916d2d539a65face6761d996f1c02633c11e242b27f9614545151dbc36a8b080ac

    • SSDEEP

      24576:Cti9XPgpR7cDuusqcekq1TDfVfmT/Ks9ldpvflKB7o7UbUz:OSzefZUbUz

    Score
    10/10
    • Strela

      An info stealer targeting mail credentials first seen in late 2022.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks