General

  • Target

    cc4233eddb585a6834c05bd0ae389f984ae24940408d3fdf68ed6f31c62c558f

  • Size

    123KB

  • Sample

    240715-n6jqgswbjp

  • MD5

    ac59da082ebbf331d0e62c0009910ecb

  • SHA1

    0c870108bd751630c21db787d60d570bd9075d2e

  • SHA256

    cc4233eddb585a6834c05bd0ae389f984ae24940408d3fdf68ed6f31c62c558f

  • SHA512

    cfbb98c5019d214d79c7f8be7e942d5bcd7156f2ab560ce4e0dd3e1cb40af704478205dd7c38dd719612dffefd2d5a3540fb52555b7ed21fd052da809a10e41e

  • SSDEEP

    3072:q0rMK4iHB+qFuLjiIgtq7jq754oi5jlh2VpA1s:rZLsI/tcjq754L5bcp

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      cc4233eddb585a6834c05bd0ae389f984ae24940408d3fdf68ed6f31c62c558f

    • Size

      123KB

    • MD5

      ac59da082ebbf331d0e62c0009910ecb

    • SHA1

      0c870108bd751630c21db787d60d570bd9075d2e

    • SHA256

      cc4233eddb585a6834c05bd0ae389f984ae24940408d3fdf68ed6f31c62c558f

    • SHA512

      cfbb98c5019d214d79c7f8be7e942d5bcd7156f2ab560ce4e0dd3e1cb40af704478205dd7c38dd719612dffefd2d5a3540fb52555b7ed21fd052da809a10e41e

    • SSDEEP

      3072:q0rMK4iHB+qFuLjiIgtq7jq754oi5jlh2VpA1s:rZLsI/tcjq754L5bcp

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks