General

  • Target

    a690ddcd2baa98edff2c6d619c552c5a2a6ee4072b5c7afa838c3749421b1e32

  • Size

    123KB

  • Sample

    240715-n6fzlawanr

  • MD5

    1b309f90528844df519fd7a97443f8ff

  • SHA1

    d13c06544840344d13bba5c08af7ceb4e23e7174

  • SHA256

    a690ddcd2baa98edff2c6d619c552c5a2a6ee4072b5c7afa838c3749421b1e32

  • SHA512

    e93aa098f843b2d533261c8a3088eaee8020eb33a50856e2d310155836f48863f302a15b20d5961aa2f1ec40f6b05d4e16fbd709716e23387a62635e5218b7ac

  • SSDEEP

    3072:ne/BwL8NPbuYxNQwkLZh8RndNsRpx63PLCJRMu/BW:e/BC8NigQxKlkRpU3P2DMu/

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      a690ddcd2baa98edff2c6d619c552c5a2a6ee4072b5c7afa838c3749421b1e32

    • Size

      123KB

    • MD5

      1b309f90528844df519fd7a97443f8ff

    • SHA1

      d13c06544840344d13bba5c08af7ceb4e23e7174

    • SHA256

      a690ddcd2baa98edff2c6d619c552c5a2a6ee4072b5c7afa838c3749421b1e32

    • SHA512

      e93aa098f843b2d533261c8a3088eaee8020eb33a50856e2d310155836f48863f302a15b20d5961aa2f1ec40f6b05d4e16fbd709716e23387a62635e5218b7ac

    • SSDEEP

      3072:ne/BwL8NPbuYxNQwkLZh8RndNsRpx63PLCJRMu/BW:e/BC8NigQxKlkRpU3P2DMu/

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks