Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1c0ecc9f1aa35bc25b255824a52593686e905ba607f7b183a7beb8b9cc175fc9

  • Size

    124KB

  • Sample

    240715-n572paybjd

  • MD5

    e9822d7e50fcc39d63462ca5af3da838

  • SHA1

    c5c58873f983332b4c8ccf9cdadf97f9115dbd65

  • SHA256

    1c0ecc9f1aa35bc25b255824a52593686e905ba607f7b183a7beb8b9cc175fc9

  • SHA512

    1512e0cff5e96e910bd93885827159a31f60eedbcb087e8f2b24b4bf86737c78d1b2558da5b33404122fb5c69bbb8a74abd919e7db373d179d8b374b80d9aeba

  • SSDEEP

    1536:cS+avyfIZby42orwMUF/SGnPik1J0l2tP2Fvd6IjWx9ah7u6OXBkhp5/HHahrgQH:csyFKqJh6pEtGW92wkT5ny1peaHnC1

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      1c0ecc9f1aa35bc25b255824a52593686e905ba607f7b183a7beb8b9cc175fc9

    • Size

      124KB

    • MD5

      e9822d7e50fcc39d63462ca5af3da838

    • SHA1

      c5c58873f983332b4c8ccf9cdadf97f9115dbd65

    • SHA256

      1c0ecc9f1aa35bc25b255824a52593686e905ba607f7b183a7beb8b9cc175fc9

    • SHA512

      1512e0cff5e96e910bd93885827159a31f60eedbcb087e8f2b24b4bf86737c78d1b2558da5b33404122fb5c69bbb8a74abd919e7db373d179d8b374b80d9aeba

    • SSDEEP

      1536:cS+avyfIZby42orwMUF/SGnPik1J0l2tP2Fvd6IjWx9ah7u6OXBkhp5/HHahrgQH:csyFKqJh6pEtGW92wkT5ny1peaHnC1

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks