General

  • Target

    82e394fde5da2b2a1dda95c4be9164a0a26399e965886a2c038944d4c2537e0b

  • Size

    124KB

  • Sample

    240715-n6jqgswbkj

  • MD5

    84975b6626a60c602ca18ac6d2d35d1d

  • SHA1

    8bf4debbbbe6d7ae40fbe8bbe4eca593ac1f9ca1

  • SHA256

    82e394fde5da2b2a1dda95c4be9164a0a26399e965886a2c038944d4c2537e0b

  • SHA512

    92da7000ec9843a7dc84cc7107f28f028ac9fac6a689494aa33de14cd4cf475bb4792d4ed95d865397a828d81452b16b406f607c6b3ebc48bc9d92f8ad611ce8

  • SSDEEP

    3072:TH5WmiKbbWEYSHviJNSESzP9mEDW0jj3wPdHK:VWpK+EVHvYSESzP9mEDW0jjwPBK

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      82e394fde5da2b2a1dda95c4be9164a0a26399e965886a2c038944d4c2537e0b

    • Size

      124KB

    • MD5

      84975b6626a60c602ca18ac6d2d35d1d

    • SHA1

      8bf4debbbbe6d7ae40fbe8bbe4eca593ac1f9ca1

    • SHA256

      82e394fde5da2b2a1dda95c4be9164a0a26399e965886a2c038944d4c2537e0b

    • SHA512

      92da7000ec9843a7dc84cc7107f28f028ac9fac6a689494aa33de14cd4cf475bb4792d4ed95d865397a828d81452b16b406f607c6b3ebc48bc9d92f8ad611ce8

    • SSDEEP

      3072:TH5WmiKbbWEYSHviJNSESzP9mEDW0jj3wPdHK:VWpK+EVHvYSESzP9mEDW0jjwPBK

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks