Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9671fffffc168baf3de4fcb648e451dc04723cc80aee3efea3c5dd7f7033198e

  • Size

    123KB

  • Sample

    240715-n6e3aswamr

  • MD5

    def5cab1b6222e1b2e88eec0c5a64c3c

  • SHA1

    c761a6a41d4860eadd0279ae20aeabab5d70b1a9

  • SHA256

    9671fffffc168baf3de4fcb648e451dc04723cc80aee3efea3c5dd7f7033198e

  • SHA512

    9eceba927fb1efc612677a573132428b6a483cca6d037a7d608b9789c42b15f4bde566b3d3be24506e0a8a35df30c77b0f580f6e0c9f47bb10c20bef1cb57c53

  • SSDEEP

    1536:XEwXfQfsnJrCvGamVTviktzbyfXsQk+W/FVJg/WbI7tjxBw6uj/BG8WaFZniXsNh:0QfK8Jdaguuzbk9W/FV9875wbWcQK

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      9671fffffc168baf3de4fcb648e451dc04723cc80aee3efea3c5dd7f7033198e

    • Size

      123KB

    • MD5

      def5cab1b6222e1b2e88eec0c5a64c3c

    • SHA1

      c761a6a41d4860eadd0279ae20aeabab5d70b1a9

    • SHA256

      9671fffffc168baf3de4fcb648e451dc04723cc80aee3efea3c5dd7f7033198e

    • SHA512

      9eceba927fb1efc612677a573132428b6a483cca6d037a7d608b9789c42b15f4bde566b3d3be24506e0a8a35df30c77b0f580f6e0c9f47bb10c20bef1cb57c53

    • SSDEEP

      1536:XEwXfQfsnJrCvGamVTviktzbyfXsQk+W/FVJg/WbI7tjxBw6uj/BG8WaFZniXsNh:0QfK8Jdaguuzbk9W/FV9875wbWcQK

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks