Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    40d4bb723b67f37de185ebfcfb4a691848124d6f5d01499c85810e66ff7144b1

  • Size

    123KB

  • Sample

    240715-n59khsvhqn

  • MD5

    06af7f620b7426c4576092134dd371d8

  • SHA1

    8471e53a656a9c2b881db03926e21d4ad10da462

  • SHA256

    40d4bb723b67f37de185ebfcfb4a691848124d6f5d01499c85810e66ff7144b1

  • SHA512

    f28bc60343c37214e9ed85787b933740eb22fefc2f3831fbc0b863ff34b91d3fec63261c2935bff21d7344230b0b0d07da4fdeb8940ebc9c027da0b89a737187

  • SSDEEP

    3072:y/Ayle2HlT2FByx7fK2P0S/7gnvxXTglLQvi/dyhCfZ0mqc60G:e7J2PYOOJgnJDglLQkdychBq

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      40d4bb723b67f37de185ebfcfb4a691848124d6f5d01499c85810e66ff7144b1

    • Size

      123KB

    • MD5

      06af7f620b7426c4576092134dd371d8

    • SHA1

      8471e53a656a9c2b881db03926e21d4ad10da462

    • SHA256

      40d4bb723b67f37de185ebfcfb4a691848124d6f5d01499c85810e66ff7144b1

    • SHA512

      f28bc60343c37214e9ed85787b933740eb22fefc2f3831fbc0b863ff34b91d3fec63261c2935bff21d7344230b0b0d07da4fdeb8940ebc9c027da0b89a737187

    • SSDEEP

      3072:y/Ayle2HlT2FByx7fK2P0S/7gnvxXTglLQvi/dyhCfZ0mqc60G:e7J2PYOOJgnJDglLQkdychBq

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks