strela | 6be18d1b2a9412d001f63c6b3aad32e525822beee8dd5df976f2a60ccae40a30 | Triage

Sharing

General

Target

6be18d1b2a9412d001f63c6b3aad32e525822beee8dd5df976f2a60ccae40a30
Size

126KB
Sample

240715-n59waavhqr
MD5

d372ce9928c13df7130a65a698ef12ad
SHA1

1c3cd56d9c860345e63a73a07def35edbe260368
SHA256

6be18d1b2a9412d001f63c6b3aad32e525822beee8dd5df976f2a60ccae40a30
SHA512

6d6b6aa7798e000aaba16d525f5db316552367d36557c83a349d613eae076491a80448e9bc839e487f4fc64ad81dab976648f14209602b6678b595970be40cdc
SSDEEP

3072:n5aFrT3YU73cQiHb6Ur5RaRC5DY8d8wnCXfSB7QkMVeUO:n5+rT3YATi2RA1ZKqBUkoeU

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  6be18d1b2a9412d001f63c6b3aad32e525822beee8dd5df976f2a60ccae40a30
- Size
  
  126KB
- MD5
  
  d372ce9928c13df7130a65a698ef12ad
- SHA1
  
  1c3cd56d9c860345e63a73a07def35edbe260368
- SHA256
  
  6be18d1b2a9412d001f63c6b3aad32e525822beee8dd5df976f2a60ccae40a30
- SHA512
  
  6d6b6aa7798e000aaba16d525f5db316552367d36557c83a349d613eae076491a80448e9bc839e487f4fc64ad81dab976648f14209602b6678b595970be40cdc
- SSDEEP
  
  3072:n5aFrT3YU73cQiHb6Ur5RaRC5DY8d8wnCXfSB7QkMVeUO:n5+rT3YATi2RA1ZKqBUkoeU
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2