Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7957eacfd58a550316857a4e64051631d0b3c1d705950ab9806f4755bb21b7f1

  • Size

    123KB

  • Sample

    240715-n6gwwsycmf

  • MD5

    bc5c4d2f66599645f527efe04c208d18

  • SHA1

    202e504117dd8e5fe24312e9e04d59d3edc6ec39

  • SHA256

    7957eacfd58a550316857a4e64051631d0b3c1d705950ab9806f4755bb21b7f1

  • SHA512

    4c8f7779174ee0bf8e87d368d79cb2a61102003a738ab0d56a6a15b56ef492041b3117f515615a87a988fc687e98a9ef3594054a7c1c1db4f5765d93123de6b5

  • SSDEEP

    3072:n5pMq8MLSnovLQ6yOi/tsZM7MEPrW/L0aS0jb:nfMJnIc6yOiKM7MEPrW/L0dI

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      7957eacfd58a550316857a4e64051631d0b3c1d705950ab9806f4755bb21b7f1

    • Size

      123KB

    • MD5

      bc5c4d2f66599645f527efe04c208d18

    • SHA1

      202e504117dd8e5fe24312e9e04d59d3edc6ec39

    • SHA256

      7957eacfd58a550316857a4e64051631d0b3c1d705950ab9806f4755bb21b7f1

    • SHA512

      4c8f7779174ee0bf8e87d368d79cb2a61102003a738ab0d56a6a15b56ef492041b3117f515615a87a988fc687e98a9ef3594054a7c1c1db4f5765d93123de6b5

    • SSDEEP

      3072:n5pMq8MLSnovLQ6yOi/tsZM7MEPrW/L0aS0jb:nfMJnIc6yOiKM7MEPrW/L0dI

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks