Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bb49a2dfe36c00968d3db6b08366ce21e3275d0a20d7fd87d0f3e1216f2560f1

  • Size

    123KB

  • Sample

    240715-n6fntsycle

  • MD5

    6f864df841d54b426901394865ff8fad

  • SHA1

    48a26c28876a69e8b97aa350c4d7a4d82d760138

  • SHA256

    bb49a2dfe36c00968d3db6b08366ce21e3275d0a20d7fd87d0f3e1216f2560f1

  • SHA512

    e9f734d978ba81cbeb9b9b3968dc4552e5ce7c3353834d296cfb1b56051cfde92958e29e85c792b4234a25cdace290c30b968302296a69c27feb69ed66572da2

  • SSDEEP

    1536:qoie9gObNr1KhVPY+Qrgvf7JitHcExRqknwGDznTBJIfotqTeezZsclM0/kf3:qq9gOp0wzPRZVTBJ5ti+mU

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      bb49a2dfe36c00968d3db6b08366ce21e3275d0a20d7fd87d0f3e1216f2560f1

    • Size

      123KB

    • MD5

      6f864df841d54b426901394865ff8fad

    • SHA1

      48a26c28876a69e8b97aa350c4d7a4d82d760138

    • SHA256

      bb49a2dfe36c00968d3db6b08366ce21e3275d0a20d7fd87d0f3e1216f2560f1

    • SHA512

      e9f734d978ba81cbeb9b9b3968dc4552e5ce7c3353834d296cfb1b56051cfde92958e29e85c792b4234a25cdace290c30b968302296a69c27feb69ed66572da2

    • SSDEEP

      1536:qoie9gObNr1KhVPY+Qrgvf7JitHcExRqknwGDznTBJIfotqTeezZsclM0/kf3:qq9gOp0wzPRZVTBJ5ti+mU

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks