strela | 107d90d733af2d5a5704544002dc1cacf7268278dd7ba2fb8b926d7e29173e6d | Triage

Sharing

General

Target

107d90d733af2d5a5704544002dc1cacf7268278dd7ba2fb8b926d7e29173e6d
Size

124KB
Sample

240715-n6dt8swalq
MD5

bd0b2447bbbc923d80c6dd0f4f83e6c8
SHA1

f7c817267fcc71c757aaffb28281f921f98f2662
SHA256

107d90d733af2d5a5704544002dc1cacf7268278dd7ba2fb8b926d7e29173e6d
SHA512

2764cb020b332d7549a41b75f3038aedc5cd2d045a0e2679330baa05bf6dda37e762a42b01ee6d1b84e161a492ed155e0fb96a525b46f124d1a07345cdf807aa
SSDEEP

3072:EV/vw4wjZE4cj7cXJSSA6wFOC10Y6o3pf1DGCd3t5syCfjH:EV/vKanncYSA6OjKYhGCv5syCfj

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  107d90d733af2d5a5704544002dc1cacf7268278dd7ba2fb8b926d7e29173e6d
- Size
  
  124KB
- MD5
  
  bd0b2447bbbc923d80c6dd0f4f83e6c8
- SHA1
  
  f7c817267fcc71c757aaffb28281f921f98f2662
- SHA256
  
  107d90d733af2d5a5704544002dc1cacf7268278dd7ba2fb8b926d7e29173e6d
- SHA512
  
  2764cb020b332d7549a41b75f3038aedc5cd2d045a0e2679330baa05bf6dda37e762a42b01ee6d1b84e161a492ed155e0fb96a525b46f124d1a07345cdf807aa
- SSDEEP
  
  3072:EV/vw4wjZE4cj7cXJSSA6wFOC10Y6o3pf1DGCd3t5syCfjH:EV/vKanncYSA6OjKYhGCv5syCfj
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2