General

  • Target

    3bd8c1a023ba1f5d798f1d29a706e5f3c4733ea18c35bd4c383946ca726772b3

  • Size

    124KB

  • Sample

    240715-n6e3aswamp

  • MD5

    7921fe961b3b8fb7d1a1f8c8b6bbc149

  • SHA1

    7bc93faf824edde654eca15888399f1866b4e773

  • SHA256

    3bd8c1a023ba1f5d798f1d29a706e5f3c4733ea18c35bd4c383946ca726772b3

  • SHA512

    8349cb98690926bb45028ba7010e1bc7a831782851ecf122a4a1336a6c19c52a0320963b22eba4c49df4b4e593821a6d478e53b29360e7eee5be16feee41592c

  • SSDEEP

    3072:ABnr11ScKsxFUkIFcZr5IgqDW1JnHIWKGcfHRi:cecLFUkIFcZCnW1BUPR

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      3bd8c1a023ba1f5d798f1d29a706e5f3c4733ea18c35bd4c383946ca726772b3

    • Size

      124KB

    • MD5

      7921fe961b3b8fb7d1a1f8c8b6bbc149

    • SHA1

      7bc93faf824edde654eca15888399f1866b4e773

    • SHA256

      3bd8c1a023ba1f5d798f1d29a706e5f3c4733ea18c35bd4c383946ca726772b3

    • SHA512

      8349cb98690926bb45028ba7010e1bc7a831782851ecf122a4a1336a6c19c52a0320963b22eba4c49df4b4e593821a6d478e53b29360e7eee5be16feee41592c

    • SSDEEP

      3072:ABnr11ScKsxFUkIFcZr5IgqDW1JnHIWKGcfHRi:cecLFUkIFcZCnW1BUPR

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks