strela | 3c96c13b095697fdcad899a3a10918f0717ea7ef5e42b796e5638810ba84f003

Analysis

max time kernel
93s
max time network
96s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
15-07-2024 12:04

Target

3c96c13b095697fdcad899a3a10918f0717ea7ef5e42b796e5638810ba84f003.dll
Size

125KB
MD5

82bda2e8483eb8a0586a7b3ce5e71074
SHA1

2260ae792147076f7908748fd6867311950dae76
SHA256

3c96c13b095697fdcad899a3a10918f0717ea7ef5e42b796e5638810ba84f003
SHA512

a70c826a1ba7a2d3721593ceb4b5a0019f0023286b9afae34fe57d3f80da607903bab2a93f2eff6227ad6ec8f6e319d2394554262eebaf2234b8a6429307fda5
SSDEEP

1536:h4ag7u05KleCtYIsKo2jICfP9liqhYRO+4FubSxUkyNVMIrsYGObgjJ4XX:9g7uq6cAnit4F4YyNVMIrpM6

Score

10^/10

strela stealer

Family

strela

45.9.74.32

Attributes

Detects Strela Stealer payload 1 IoCs

resource	yara_rule
behavioral1/memory/1716-0-0x0000024714380000-0x00000247143A2000-memory.dmp	family_strela

Strela stealer
An info stealer targeting mail credentials first seen in late 2022.
stealer strela

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\3c96c13b095697fdcad899a3a10918f0717ea7ef5e42b796e5638810ba84f003.dll,#1
1⤵
PID:1716

memory/1716-0-0x0000024714380000-0x00000247143A2000-memory.dmp

Filesize
136KB

Download