Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    132c56e86914cf90ef174c404e415988166b77170d01dfb3c91c5ca618aa8a90

  • Size

    124KB

  • Sample

    240715-n6weaawcmr

  • MD5

    54a504f32ec1bac936481dc14d644853

  • SHA1

    fd75a19f189da1bcf19eaeb1314ecdac33f28b0c

  • SHA256

    132c56e86914cf90ef174c404e415988166b77170d01dfb3c91c5ca618aa8a90

  • SHA512

    a8eb969418ba8ff1db8efd1ac343f84b91ebcba5268ca99080f413e0ee0340fd1cf737e25fc4f7fd9a9d425ce69ef4be66c0347104848fe7ab178f1d8986c2bf

  • SSDEEP

    3072:vr4jrk3uapBZ0vXmZvskcd+zcSrBV+uj/+Zb657s/pocR3:cjgjBZDZkkf5r+i+9HrR

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      132c56e86914cf90ef174c404e415988166b77170d01dfb3c91c5ca618aa8a90

    • Size

      124KB

    • MD5

      54a504f32ec1bac936481dc14d644853

    • SHA1

      fd75a19f189da1bcf19eaeb1314ecdac33f28b0c

    • SHA256

      132c56e86914cf90ef174c404e415988166b77170d01dfb3c91c5ca618aa8a90

    • SHA512

      a8eb969418ba8ff1db8efd1ac343f84b91ebcba5268ca99080f413e0ee0340fd1cf737e25fc4f7fd9a9d425ce69ef4be66c0347104848fe7ab178f1d8986c2bf

    • SSDEEP

      3072:vr4jrk3uapBZ0vXmZvskcd+zcSrBV+uj/+Zb657s/pocR3:cjgjBZDZkkf5r+i+9HrR

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks