strela | 8ad72111c6dfccb0b1634e00d0619762ba552c2de3404d6ac71cded83f411836

Analysis

max time kernel
146s
max time network
155s
platform
windows11-21h2_x64
resource
win11-20240709-en
resource tags

arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system
submitted
15-07-2024 12:01

Target

8ad72111c6dfccb0b1634e00d0619762ba552c2de3404d6ac71cded83f411836.dll
Size

123KB
MD5

bc8b082d576a4bf0c3a96715949744b4
SHA1

d5d8872b8d87beeaf69b837d2fb231b32da35d58
SHA256

8ad72111c6dfccb0b1634e00d0619762ba552c2de3404d6ac71cded83f411836
SHA512

554ee11a827a99841af2cdb0e8cf60640b36c0954eb95e9f223a9890b0fdc14dbbab63c358b0694f323ed30404d6be90af8f655eff1265044966a2986dc4bf83
SSDEEP

3072:j4tFnEXiBTSKumFoXlJmZJ6NChFcR+f1u:j4T7BTSKumFoXla24Fcof0

Score

10^/10

strela stealer

Family

strela

45.9.74.32

Attributes

Detects Strela Stealer payload 1 IoCs

resource	yara_rule
behavioral2/memory/920-0-0x000001CDC7F50000-0x000001CDC7F72000-memory.dmp	family_strela

Strela stealer
An info stealer targeting mail credentials first seen in late 2022.
stealer strela

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\8ad72111c6dfccb0b1634e00d0619762ba552c2de3404d6ac71cded83f411836.dll,#1
1⤵
PID:920

memory/920-0-0x000001CDC7F50000-0x000001CDC7F72000-memory.dmp

Filesize
136KB

Download
memory/920-1-0x000001CDC7F50000-0x000001CDC7F72000-memory.dmp

Filesize
136KB

Download