General

  • Target

    08022024_2219_06022024_krieger-schramm.zip

  • Size

    256KB

  • Sample

    240208-rm4s4aed31

  • MD5

    f84aeb35d5bbf1f44d16b008b517012e

  • SHA1

    e362b3ef57fd40eec9add58da8aae9d57842fbe0

  • SHA256

    41e60d8e1802d173e24b105ca79af2d2f075d9909565a82fd4f5c8db2b7ed970

  • SHA512

    820a1f61f601407c6ee2aa0c45d4e2b80ac06c03683cf8f3b092e5f391a6c84c7f051cd01f6d054b7a6759e75dea517984596abc0745543dddc8c14cfa002a69

  • SSDEEP

    6144:WHA0Yfxtdlnfi0DUmt8GYvCAsm1saO5zKwGe7iYgazkjSOMefSM:WHdY//na0DIfN2ewl7iIoZD

Score
10/10

Malware Config

Targets

    • Target

      21421687800828945.js

    • Size

      659KB

    • MD5

      2cea45454e7fef730082be9b5ce5f37d

    • SHA1

      b352487247c1e49bea04fae3972cc2af00bc7e23

    • SHA256

      e7c76677638bff695482f75513f4f538ae51fe8b1f0c6d7fc5f1c3ccec8217fd

    • SHA512

      d5407c8699377075f2a62673e50097bc04f35abc935587f4d9ca325daedccad2c2a3c3dd28a2e46c5aaae0d86a4d7ee95ebc5f46f9b602d8837b1bae8902ae1b

    • SSDEEP

      6144:QVyDIReG024jLFNwNBHntoF/knEXjbm0KGm63EYnkkenxf2SeefVZwzqzB0tf7gD:SyDI0/fFNwNVnZGN0YnkR+tfVWt

    Score
    10/10
    • Strela

      An info stealer targeting mail credentials first seen in late 2022.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks