General

  • Target

    5439dc93bad534938ad17a723de48fe01714fd6da604123924fff3d1c1486eb0

  • Size

    125KB

  • Sample

    240715-n6j19aycre

  • MD5

    fb25c25a286647b5c884c1135dc1daa3

  • SHA1

    f36badea13248c7efad1b44c69109907cb60bb2b

  • SHA256

    5439dc93bad534938ad17a723de48fe01714fd6da604123924fff3d1c1486eb0

  • SHA512

    61a23f4a10ca33c724be5a3cbcfd4eeee7814b27bfb8a8b95bb97122b7596af5db03566a4abb1901e8397aa0118136404d451e6960b85b0e5437094e50d7baea

  • SSDEEP

    1536:3UnbIwHuNnLTwzxjULp3qiv9LsfpIyr076zABP7nOKF7Hq9co3dCHTX0PNzE/o2Y:UqGhXfuyy6cN7Hq9L3Mb0PNo/o281

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      5439dc93bad534938ad17a723de48fe01714fd6da604123924fff3d1c1486eb0

    • Size

      125KB

    • MD5

      fb25c25a286647b5c884c1135dc1daa3

    • SHA1

      f36badea13248c7efad1b44c69109907cb60bb2b

    • SHA256

      5439dc93bad534938ad17a723de48fe01714fd6da604123924fff3d1c1486eb0

    • SHA512

      61a23f4a10ca33c724be5a3cbcfd4eeee7814b27bfb8a8b95bb97122b7596af5db03566a4abb1901e8397aa0118136404d451e6960b85b0e5437094e50d7baea

    • SSDEEP

      1536:3UnbIwHuNnLTwzxjULp3qiv9LsfpIyr076zABP7nOKF7Hq9co3dCHTX0PNzE/o2Y:UqGhXfuyy6cN7Hq9L3Mb0PNo/o281

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks