General

  • Target

    1d8a0aaafcb06489f90ec7a1683107193b74f887244f189731626192ee92d24c

  • Size

    124KB

  • Sample

    240715-n6j19aycqh

  • MD5

    e90251fb766596632d668de958133f23

  • SHA1

    1dfaef8a384e8aab3f5aea4c77f71b452898ab47

  • SHA256

    1d8a0aaafcb06489f90ec7a1683107193b74f887244f189731626192ee92d24c

  • SHA512

    cab20e133c7dbe103a5a199487064d34bc09aee0dcfb00f270da25bcf07240330fb7c95ad9e47f3968df367425f2652067874836dec1e4686e2c5757d1c19d79

  • SSDEEP

    3072:o5c6986+uvsMQWUdTkmxBEUdEH+IXSYP5HGLUwcZs4Z:+D86KPdzWH+IiwmLW

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      1d8a0aaafcb06489f90ec7a1683107193b74f887244f189731626192ee92d24c

    • Size

      124KB

    • MD5

      e90251fb766596632d668de958133f23

    • SHA1

      1dfaef8a384e8aab3f5aea4c77f71b452898ab47

    • SHA256

      1d8a0aaafcb06489f90ec7a1683107193b74f887244f189731626192ee92d24c

    • SHA512

      cab20e133c7dbe103a5a199487064d34bc09aee0dcfb00f270da25bcf07240330fb7c95ad9e47f3968df367425f2652067874836dec1e4686e2c5757d1c19d79

    • SSDEEP

      3072:o5c6986+uvsMQWUdTkmxBEUdEH+IXSYP5HGLUwcZs4Z:+D86KPdzWH+IiwmLW

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks