strela | 535a4f5218217b5d663c9a0e85ed33820556a2ead6e51eeeb4794138e8e6f10d

Analysis

max time kernel
117s
max time network
118s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
15-07-2024 06:26

Target

9b8716ad65cc302c720913f4901d8160N.dll
Size

123KB
MD5

9b8716ad65cc302c720913f4901d8160
SHA1

bed7c8f691ac7af7ba44bd817816e0bb81bbead6
SHA256

535a4f5218217b5d663c9a0e85ed33820556a2ead6e51eeeb4794138e8e6f10d
SHA512

23216d3e16582a73593f4dbd723ae928d3f9f69699335c0e7b656c281c215989c63cf750ee7819c484b1a90696a5f1c0afc96b5b413e9fddb2979afd33b29c1e
SSDEEP

1536:IHcUGQK4giWPFWSqkiY9AqEagpECePmVjtiMccd3riS8nthsvT0wzeARM:OZ7hWNhRAVaC1sMld3rilth9E

Score

10^/10

strela stealer

Family

strela

45.9.74.32

Attributes

Detects Strela Stealer payload 1 IoCs

resource	yara_rule
behavioral1/memory/2116-0-0x00000000002E0000-0x0000000000302000-memory.dmp	family_strela

Strela stealer
An info stealer targeting mail credentials first seen in late 2022.
stealer strela

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\9b8716ad65cc302c720913f4901d8160N.dll,#1
1⤵
PID:2116

memory/2116-0-0x00000000002E0000-0x0000000000302000-memory.dmp

Filesize
136KB

Download