Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e95286c0211953962f21ea296fe7d7dc9e8643aa27777f11520f49dbce1bba39

  • Size

    125KB

  • Sample

    240715-n58m8avhnp

  • MD5

    06bca1f3b59139b79c03a95ab631b03a

  • SHA1

    007a3dfc3b18eb224c29a7f4e45b59f70b317def

  • SHA256

    e95286c0211953962f21ea296fe7d7dc9e8643aa27777f11520f49dbce1bba39

  • SHA512

    16da37f8590ccbf909cdccfa71d56831371e2b2ba43ad2f9f18f91e17626cd35b7c4e5f7283798a850dd73a7b9b7ed31a3b9045257d0c3fffbc32a7b335ef36e

  • SSDEEP

    3072:TvbM0p7oE/8ImGvZalBK2RyrIh3/fsMob79jVzkJRCu02:7bMMP/ZIdKIhvPoBhkJRCu0

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      e95286c0211953962f21ea296fe7d7dc9e8643aa27777f11520f49dbce1bba39

    • Size

      125KB

    • MD5

      06bca1f3b59139b79c03a95ab631b03a

    • SHA1

      007a3dfc3b18eb224c29a7f4e45b59f70b317def

    • SHA256

      e95286c0211953962f21ea296fe7d7dc9e8643aa27777f11520f49dbce1bba39

    • SHA512

      16da37f8590ccbf909cdccfa71d56831371e2b2ba43ad2f9f18f91e17626cd35b7c4e5f7283798a850dd73a7b9b7ed31a3b9045257d0c3fffbc32a7b335ef36e

    • SSDEEP

      3072:TvbM0p7oE/8ImGvZalBK2RyrIh3/fsMob79jVzkJRCu02:7bMMP/ZIdKIhvPoBhkJRCu0

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks