Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4f7ba3951f4fc51c4c1391fd62a66026c59cdec5b38dd33f4c8a5957944bf6df

  • Size

    123KB

  • Sample

    240715-ntlz3svckj

  • MD5

    a5a1c3fb6644530db92a25326c4b0976

  • SHA1

    d2e4c2b3ca54fdc2d04568db8c76a8108834817a

  • SHA256

    4f7ba3951f4fc51c4c1391fd62a66026c59cdec5b38dd33f4c8a5957944bf6df

  • SHA512

    e911d96854ef46ffb69866f63cfbf7904302bb38061a623d57be1c3a7adb789fb83270708bcc091008c5dd7af08d69aace2fdfa0a302815836bbe0860611f29e

  • SSDEEP

    3072:jOGWOj6RPLGyUlaaeewiaOaSpns9dkd+SIKvXR3PN:jPGPLHOa7qaOxts9dkd+SxvXR3PN

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      4f7ba3951f4fc51c4c1391fd62a66026c59cdec5b38dd33f4c8a5957944bf6df

    • Size

      123KB

    • MD5

      a5a1c3fb6644530db92a25326c4b0976

    • SHA1

      d2e4c2b3ca54fdc2d04568db8c76a8108834817a

    • SHA256

      4f7ba3951f4fc51c4c1391fd62a66026c59cdec5b38dd33f4c8a5957944bf6df

    • SHA512

      e911d96854ef46ffb69866f63cfbf7904302bb38061a623d57be1c3a7adb789fb83270708bcc091008c5dd7af08d69aace2fdfa0a302815836bbe0860611f29e

    • SSDEEP

      3072:jOGWOj6RPLGyUlaaeewiaOaSpns9dkd+SIKvXR3PN:jPGPLHOa7qaOxts9dkd+SxvXR3PN

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks