General

  • Target

    32c99ca209b4666a57551f02bce8814e1b341de8ed53bc40b619ff7d2ef2ab40

  • Size

    124KB

  • Sample

    240715-n6j19aycrc

  • MD5

    15ed5023ce5ef283e7e802e754a81e8f

  • SHA1

    fd28e598ecfb750c41b173315f6c839a1483bade

  • SHA256

    32c99ca209b4666a57551f02bce8814e1b341de8ed53bc40b619ff7d2ef2ab40

  • SHA512

    399f4e6e90b4dfdc1e578cfd57b145d5a50471391bb6c13e26df720c0e7c6dff68a0e080b8d33d1a2681bc8479139b8a1b447c5f58633af2a37a48dfdfb848f8

  • SSDEEP

    3072:/CW+7dnfe2u0ZgJWiaFEE3vjU8kjt9zPcAOdQQ/b:/CDd25WiaFEqK7P7OdQQD

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      32c99ca209b4666a57551f02bce8814e1b341de8ed53bc40b619ff7d2ef2ab40

    • Size

      124KB

    • MD5

      15ed5023ce5ef283e7e802e754a81e8f

    • SHA1

      fd28e598ecfb750c41b173315f6c839a1483bade

    • SHA256

      32c99ca209b4666a57551f02bce8814e1b341de8ed53bc40b619ff7d2ef2ab40

    • SHA512

      399f4e6e90b4dfdc1e578cfd57b145d5a50471391bb6c13e26df720c0e7c6dff68a0e080b8d33d1a2681bc8479139b8a1b447c5f58633af2a37a48dfdfb848f8

    • SSDEEP

      3072:/CW+7dnfe2u0ZgJWiaFEE3vjU8kjt9zPcAOdQQ/b:/CDd25WiaFEqK7P7OdQQD

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks