Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c9223b38490d99982d99d5a6a7ee288a0147885038b4ad63b1aa7f86165564f0

  • Size

    124KB

  • Sample

    240715-n589rayble

  • MD5

    674f26ee35d3dc029245cf2d97098921

  • SHA1

    88b769ebbfc2b632635aab44cb3f1e0b95a59166

  • SHA256

    c9223b38490d99982d99d5a6a7ee288a0147885038b4ad63b1aa7f86165564f0

  • SHA512

    77bc4433c4e791df21d54ee3bafaac16d9c68b7b9514b4c058275f7e8efe6952e33f6df20d26496440ca4680def49426705c919302259d98b04eb536ff23899d

  • SSDEEP

    3072:HCZcwxqUVIkTA/5u4q82AX8/OQcJ0psXCpeBhqK:H8EUy/C826acJasgeB

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      c9223b38490d99982d99d5a6a7ee288a0147885038b4ad63b1aa7f86165564f0

    • Size

      124KB

    • MD5

      674f26ee35d3dc029245cf2d97098921

    • SHA1

      88b769ebbfc2b632635aab44cb3f1e0b95a59166

    • SHA256

      c9223b38490d99982d99d5a6a7ee288a0147885038b4ad63b1aa7f86165564f0

    • SHA512

      77bc4433c4e791df21d54ee3bafaac16d9c68b7b9514b4c058275f7e8efe6952e33f6df20d26496440ca4680def49426705c919302259d98b04eb536ff23899d

    • SSDEEP

      3072:HCZcwxqUVIkTA/5u4q82AX8/OQcJ0psXCpeBhqK:H8EUy/C826acJasgeB

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks