Overview

overview

10

Static

static

3

541c11302d...a1.dll

windows7-x64

10

541c11302d...a1.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    541c11302d3dda0e7b8a06ff975712ee1f9fa35f7bddde34930a8b8af9b2b6a1.exe

  • Size

    156KB

  • Sample

    240709-t71y2stbnq

  • MD5

    c42603957d6b9241a889a102c6e62428

  • SHA1

    8e19dfdd77ff5980c533dd0c8a0beb53d728eccf

  • SHA256

    541c11302d3dda0e7b8a06ff975712ee1f9fa35f7bddde34930a8b8af9b2b6a1

  • SHA512

    a2b337adc386d77191c0bf6299410cfa28eee360081c3fbb86e453303f266a2895cff874bf5d05d57ddb8646e969ad247bf023014c79f9a4fc73a5a829d6f416

  • SSDEEP

    3072:rLUCrzNcgTda8TTSrh7li9tPcy4kJclnE/SEVKcbGaOifra:Tr/TdaCS9lQJ1/RVwaOim

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.13

Attributes
  • url_path

    /server.php

  • user_agent

    Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537

Targets

    • Target

      541c11302d3dda0e7b8a06ff975712ee1f9fa35f7bddde34930a8b8af9b2b6a1.exe

    • Size

      156KB

    • MD5

      c42603957d6b9241a889a102c6e62428

    • SHA1

      8e19dfdd77ff5980c533dd0c8a0beb53d728eccf

    • SHA256

      541c11302d3dda0e7b8a06ff975712ee1f9fa35f7bddde34930a8b8af9b2b6a1

    • SHA512

      a2b337adc386d77191c0bf6299410cfa28eee360081c3fbb86e453303f266a2895cff874bf5d05d57ddb8646e969ad247bf023014c79f9a4fc73a5a829d6f416

    • SSDEEP

      3072:rLUCrzNcgTda8TTSrh7li9tPcy4kJclnE/SEVKcbGaOifra:Tr/TdaCS9lQJ1/RVwaOim

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks