strela | 933a2e215991c5a3e2027ca505f40636603c22ead1a33c7923251c6b4f6b16e6 | Triage

Sharing

General

Target

933a2e215991c5a3e2027ca505f40636603c22ead1a33c7923251c6b4f6b16e6
Size

125KB
Sample

240715-n6gacswapl
MD5

93808046a710eb1534404109fcc214d2
SHA1

7ab1864a86339e544558db0a29fbe7dc9d8ee643
SHA256

933a2e215991c5a3e2027ca505f40636603c22ead1a33c7923251c6b4f6b16e6
SHA512

f93a1f0d871ad28477c06fa20ee2188597c041172aa59b5bf878fe224af90e0287a6af50192faf0298a59eaff095f19165f65abfb65b3d8344e90510f0b5cc33
SSDEEP

3072:u6tLQoMwXztN59cHYWmjpILzc2Nvq4GGunYrJH:u6LQoMwhN7cHYWqOL4BIJ

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  933a2e215991c5a3e2027ca505f40636603c22ead1a33c7923251c6b4f6b16e6
- Size
  
  125KB
- MD5
  
  93808046a710eb1534404109fcc214d2
- SHA1
  
  7ab1864a86339e544558db0a29fbe7dc9d8ee643
- SHA256
  
  933a2e215991c5a3e2027ca505f40636603c22ead1a33c7923251c6b4f6b16e6
- SHA512
  
  f93a1f0d871ad28477c06fa20ee2188597c041172aa59b5bf878fe224af90e0287a6af50192faf0298a59eaff095f19165f65abfb65b3d8344e90510f0b5cc33
- SSDEEP
  
  3072:u6tLQoMwXztN59cHYWmjpILzc2Nvq4GGunYrJH:u6LQoMwhN7cHYWqOL4BIJ
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2