Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eee125a53e970d661392b405426a2662bc430fb7bff02b1b36bcc8e0d4d18718

  • Size

    125KB

  • Sample

    240715-n59waaybmg

  • MD5

    96aedcc5b3929c17a5d8e0b6f2134198

  • SHA1

    aefed87d580cfbc6a88456733b3183f8a3bc08a0

  • SHA256

    eee125a53e970d661392b405426a2662bc430fb7bff02b1b36bcc8e0d4d18718

  • SHA512

    5a29e8bec035711c4ff6e47c3416028a62aa2b41d6960a937625f583cbafb8abe3fb2c2480c39fae9f84006878065f727b925a44d2aff4920fe44a27f8bb13f4

  • SSDEEP

    3072:fvA6a8VLf5HNme8GVP5iOkmFohJcAAboqn+P6Bmql:A69b550mSoAAstP6B3

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      eee125a53e970d661392b405426a2662bc430fb7bff02b1b36bcc8e0d4d18718

    • Size

      125KB

    • MD5

      96aedcc5b3929c17a5d8e0b6f2134198

    • SHA1

      aefed87d580cfbc6a88456733b3183f8a3bc08a0

    • SHA256

      eee125a53e970d661392b405426a2662bc430fb7bff02b1b36bcc8e0d4d18718

    • SHA512

      5a29e8bec035711c4ff6e47c3416028a62aa2b41d6960a937625f583cbafb8abe3fb2c2480c39fae9f84006878065f727b925a44d2aff4920fe44a27f8bb13f4

    • SSDEEP

      3072:fvA6a8VLf5HNme8GVP5iOkmFohJcAAboqn+P6Bmql:A69b550mSoAAstP6B3

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks