Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d9480402bb305f7fd97b2d70baf9eb7c211bfeb2a38143123bf59704f94d2583

  • Size

    124KB

  • Sample

    240715-n86b9szelg

  • MD5

    9465b85b68301b6771ff93b8f51b9281

  • SHA1

    3a80ad02009bc1b83e1f49368fcefd0732c79829

  • SHA256

    d9480402bb305f7fd97b2d70baf9eb7c211bfeb2a38143123bf59704f94d2583

  • SHA512

    40a06fbb3f75ad816c3185466bf6659bb0cee115ccf8e09e65dd0a5bdaebf4972a7939b05f82dec9e43623fbb1bb4f13ab3aa872a895de276af038dc22f2eb61

  • SSDEEP

    3072:xBpKi8uUHIihPGJEmqiDW/pg3ZarfNcCvpUlhc26vZphfs34r4:xBEHlpGJt/JarfNcv/kvZphkE4

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      d9480402bb305f7fd97b2d70baf9eb7c211bfeb2a38143123bf59704f94d2583

    • Size

      124KB

    • MD5

      9465b85b68301b6771ff93b8f51b9281

    • SHA1

      3a80ad02009bc1b83e1f49368fcefd0732c79829

    • SHA256

      d9480402bb305f7fd97b2d70baf9eb7c211bfeb2a38143123bf59704f94d2583

    • SHA512

      40a06fbb3f75ad816c3185466bf6659bb0cee115ccf8e09e65dd0a5bdaebf4972a7939b05f82dec9e43623fbb1bb4f13ab3aa872a895de276af038dc22f2eb61

    • SSDEEP

      3072:xBpKi8uUHIihPGJEmqiDW/pg3ZarfNcCvpUlhc26vZphfs34r4:xBEHlpGJt/JarfNcv/kvZphkE4

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks