General

  • Target

    3449c6a93223ce66672032a5c44478b6d2d029399a5fd8aa0bbd5658821481cc

  • Size

    125KB

  • Sample

    240715-n6j19aycrb

  • MD5

    bf6a46fbd8db8092964b5d034264d866

  • SHA1

    4ef54dd3f1a14bf2a00a3aa33a87f036e7caabe7

  • SHA256

    3449c6a93223ce66672032a5c44478b6d2d029399a5fd8aa0bbd5658821481cc

  • SHA512

    725aeaac7f82aa1e05157df725d2df4159cfa64b7ee2521d6b40b2929f3fd1cbc0f51e7283fe3c48b950bc4f8a37fbc86f929f0254eaa0ab0b9a337515c92ec0

  • SSDEEP

    3072:Z+3f0ciVqxDz8f61J9d7E7Kozvl79cEmDy4:Z+3ctVqxDX1JHE7Koz97rmDL

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      3449c6a93223ce66672032a5c44478b6d2d029399a5fd8aa0bbd5658821481cc

    • Size

      125KB

    • MD5

      bf6a46fbd8db8092964b5d034264d866

    • SHA1

      4ef54dd3f1a14bf2a00a3aa33a87f036e7caabe7

    • SHA256

      3449c6a93223ce66672032a5c44478b6d2d029399a5fd8aa0bbd5658821481cc

    • SHA512

      725aeaac7f82aa1e05157df725d2df4159cfa64b7ee2521d6b40b2929f3fd1cbc0f51e7283fe3c48b950bc4f8a37fbc86f929f0254eaa0ab0b9a337515c92ec0

    • SSDEEP

      3072:Z+3f0ciVqxDz8f61J9d7E7Kozvl79cEmDy4:Z+3ctVqxDX1JHE7Koz97rmDL

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks