Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b6d2f4f70d4a71e969a405984526f46e2b15dada9e0e4cf0f2c07fd82b269a8d

  • Size

    124KB

  • Sample

    240715-n9xrhszhje

  • MD5

    789b120c019d6fd669bd1d1cf0fdd53d

  • SHA1

    4749f49d9097ab40b84714aecc1eb34de8b56bf2

  • SHA256

    b6d2f4f70d4a71e969a405984526f46e2b15dada9e0e4cf0f2c07fd82b269a8d

  • SHA512

    8bf696ae822f05c0085b3483773966d918dc8d606a3053718c0cc4c9aef04d0fe984c397973a6d6a3b191886e82d6307b99046599298204fc76dc26fadab89fb

  • SSDEEP

    3072:Wqlm9VD54e9zVur0SCzxebaWLTz087ToGCs:9m9VlNSCz2DLTtdCs

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      b6d2f4f70d4a71e969a405984526f46e2b15dada9e0e4cf0f2c07fd82b269a8d

    • Size

      124KB

    • MD5

      789b120c019d6fd669bd1d1cf0fdd53d

    • SHA1

      4749f49d9097ab40b84714aecc1eb34de8b56bf2

    • SHA256

      b6d2f4f70d4a71e969a405984526f46e2b15dada9e0e4cf0f2c07fd82b269a8d

    • SHA512

      8bf696ae822f05c0085b3483773966d918dc8d606a3053718c0cc4c9aef04d0fe984c397973a6d6a3b191886e82d6307b99046599298204fc76dc26fadab89fb

    • SSDEEP

      3072:Wqlm9VD54e9zVur0SCzxebaWLTz087ToGCs:9m9VlNSCz2DLTtdCs

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks