Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2ab2402178deb080d9cf3bc33351cae8c2e71fcd733d5a9fc13c9abc3ca60300

  • Size

    124KB

  • Sample

    240715-n8jhhaxalj

  • MD5

    d245e0d88b8cec341b47bc119db2caf8

  • SHA1

    d5b2222496b3d1de9861e414125161e872f969a4

  • SHA256

    2ab2402178deb080d9cf3bc33351cae8c2e71fcd733d5a9fc13c9abc3ca60300

  • SHA512

    12e84ca93934abf370afd76463832eed1cb1e1b2b28678ad449f5d3d047ebe934b260cfc017d8377814e43dc61dbc5cabbacdebdef60a0e875bac76dd5b6e968

  • SSDEEP

    3072:f28bnNnf4ZUiN4TAyEWYxkMRKkuTThtWlKlLs1Hrh1w:f2iNnfDiOEdaKuPWYlOzw

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      2ab2402178deb080d9cf3bc33351cae8c2e71fcd733d5a9fc13c9abc3ca60300

    • Size

      124KB

    • MD5

      d245e0d88b8cec341b47bc119db2caf8

    • SHA1

      d5b2222496b3d1de9861e414125161e872f969a4

    • SHA256

      2ab2402178deb080d9cf3bc33351cae8c2e71fcd733d5a9fc13c9abc3ca60300

    • SHA512

      12e84ca93934abf370afd76463832eed1cb1e1b2b28678ad449f5d3d047ebe934b260cfc017d8377814e43dc61dbc5cabbacdebdef60a0e875bac76dd5b6e968

    • SSDEEP

      3072:f28bnNnf4ZUiN4TAyEWYxkMRKkuTThtWlKlLs1Hrh1w:f2iNnfDiOEdaKuPWYlOzw

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks