Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a1708e13fc27f522cc8ffa60b3f584c70fe066a34df5227511b70fc418cec13f

  • Size

    125KB

  • Sample

    240715-n6gacswapn

  • MD5

    441344053986d3d98ad530830d71109f

  • SHA1

    4f26e3093b979d3862de4a626533da7dd4bfa1ea

  • SHA256

    a1708e13fc27f522cc8ffa60b3f584c70fe066a34df5227511b70fc418cec13f

  • SHA512

    94db90f215eeb12eda2fc1d10fa83289d49930fd926782102e9238678e6fdc753b00dee48c7be295d1ad7b928925733994035f809856cfaf6c8d507685b45653

  • SSDEEP

    3072:DqFUsgEFrK7MqH1Xy62RoyvCVCYo9OEkea5lEgl:DhL7xpy6sCIYozkejg

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      a1708e13fc27f522cc8ffa60b3f584c70fe066a34df5227511b70fc418cec13f

    • Size

      125KB

    • MD5

      441344053986d3d98ad530830d71109f

    • SHA1

      4f26e3093b979d3862de4a626533da7dd4bfa1ea

    • SHA256

      a1708e13fc27f522cc8ffa60b3f584c70fe066a34df5227511b70fc418cec13f

    • SHA512

      94db90f215eeb12eda2fc1d10fa83289d49930fd926782102e9238678e6fdc753b00dee48c7be295d1ad7b928925733994035f809856cfaf6c8d507685b45653

    • SSDEEP

      3072:DqFUsgEFrK7MqH1Xy62RoyvCVCYo9OEkea5lEgl:DhL7xpy6sCIYozkejg

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks