strela | 54ac839a47c163d7035ab8992e0b29471973ab6d3d6c40cd0bd272f0d08b12a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

54ac839a47c163d7035ab8992e0b29471973ab6d3d6c40cd0bd272f0d08b12a9
Size

123KB
Sample

240715-n9779axfnj
MD5

6faacc82be15b5c53f46ace72e1fe167
SHA1

e0f4b5931ee795ac109bb9c36d7150af207f9316
SHA256

54ac839a47c163d7035ab8992e0b29471973ab6d3d6c40cd0bd272f0d08b12a9
SHA512

9f70049df331dc8ada5149b87c03daf0c7a4aa120c1b812634b5798a410257666a8d15a0cd1a0a51101a2bb12bdfce316a5a583450badc6528ebc214b508df91
SSDEEP

3072:ZTQVMD4JtB+htevIvaxKYx6N0yjkMIZw4FU17Nt8JmklfK94:ZF2tB+hYA5YkNtYMIZBFU05fK

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  54ac839a47c163d7035ab8992e0b29471973ab6d3d6c40cd0bd272f0d08b12a9
- Size
  
  123KB
- MD5
  
  6faacc82be15b5c53f46ace72e1fe167
- SHA1
  
  e0f4b5931ee795ac109bb9c36d7150af207f9316
- SHA256
  
  54ac839a47c163d7035ab8992e0b29471973ab6d3d6c40cd0bd272f0d08b12a9
- SHA512
  
  9f70049df331dc8ada5149b87c03daf0c7a4aa120c1b812634b5798a410257666a8d15a0cd1a0a51101a2bb12bdfce316a5a583450badc6528ebc214b508df91
- SSDEEP
  
  3072:ZTQVMD4JtB+htevIvaxKYx6N0yjkMIZw4FU17Nt8JmklfK94:ZF2tB+hYA5YkNtYMIZBFU05fK
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2