Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6b2c3b58d716a4e06f272aaf62cd8ecaa352b4edeb78613055f2d3e4b9ab01c4

  • Size

    124KB

  • Sample

    240715-n55xbsyape

  • MD5

    4a9d94ad6f86e84fc245f79f4a04a62d

  • SHA1

    1502cf226bf84bb7a95974cd23d90e8662e0b09f

  • SHA256

    6b2c3b58d716a4e06f272aaf62cd8ecaa352b4edeb78613055f2d3e4b9ab01c4

  • SHA512

    4a972ad158431d05fe5921df2b0ee05f840a4f2fb966a8d2d5081310cbf9f3dec11752b30759742ca0ffc1ba62d95148a7dd53c4f63374cac1689326aa7ea118

  • SSDEEP

    3072:GPxPf2OwtFxADdfOSXaJHh/Ynqwfih2MlEzhC6Jlc/i:gm2DxpKJB/YlglElCYlci

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      6b2c3b58d716a4e06f272aaf62cd8ecaa352b4edeb78613055f2d3e4b9ab01c4

    • Size

      124KB

    • MD5

      4a9d94ad6f86e84fc245f79f4a04a62d

    • SHA1

      1502cf226bf84bb7a95974cd23d90e8662e0b09f

    • SHA256

      6b2c3b58d716a4e06f272aaf62cd8ecaa352b4edeb78613055f2d3e4b9ab01c4

    • SHA512

      4a972ad158431d05fe5921df2b0ee05f840a4f2fb966a8d2d5081310cbf9f3dec11752b30759742ca0ffc1ba62d95148a7dd53c4f63374cac1689326aa7ea118

    • SSDEEP

      3072:GPxPf2OwtFxADdfOSXaJHh/Ynqwfih2MlEzhC6Jlc/i:gm2DxpKJB/YlglElCYlci

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks