General

  • Target

    8ae020aadab79ba0348a0542a13dc76005734ee5fca5174c7dc977c7cbd6b3a8

  • Size

    122KB

  • Sample

    240715-n6erjawamn

  • MD5

    d1b00e1662e7f9818b00b1d7fa2da423

  • SHA1

    7308aa53c731affcc46292637a915cfeda642a6b

  • SHA256

    8ae020aadab79ba0348a0542a13dc76005734ee5fca5174c7dc977c7cbd6b3a8

  • SHA512

    790257df3fb4ec86be8971d9c7cd381f3e17cda882c106c5003ad38ad942942b837915bfbea1f6de7710dee1bdbfc1e3b862873837b2f2df6c10e3ea985c6eec

  • SSDEEP

    3072:LhpVekho8MHzXeJ9ypeZgTtwcHzN9M0nE+V9fexDNr8LAu:LhXekho82OPype+TBHzrfE+VxSJ8U

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      8ae020aadab79ba0348a0542a13dc76005734ee5fca5174c7dc977c7cbd6b3a8

    • Size

      122KB

    • MD5

      d1b00e1662e7f9818b00b1d7fa2da423

    • SHA1

      7308aa53c731affcc46292637a915cfeda642a6b

    • SHA256

      8ae020aadab79ba0348a0542a13dc76005734ee5fca5174c7dc977c7cbd6b3a8

    • SHA512

      790257df3fb4ec86be8971d9c7cd381f3e17cda882c106c5003ad38ad942942b837915bfbea1f6de7710dee1bdbfc1e3b862873837b2f2df6c10e3ea985c6eec

    • SSDEEP

      3072:LhpVekho8MHzXeJ9ypeZgTtwcHzN9M0nE+V9fexDNr8LAu:LhXekho82OPype+TBHzrfE+VxSJ8U

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks