strela | 3173c9f5083d74483a20dadb699372a5a75b7326ac52adf0110a99dc0d26763f | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

3173c9f5083d74483a20dadb699372a5a75b7326ac52adf0110a99dc0d26763f
Size

121KB
Sample

240715-ntmavavckk
MD5

318f2e9bceeb4fe20d8a093906e33dd3
SHA1

4f870cbd5ae82b243f3e7d5e47b82f08b2917063
SHA256

3173c9f5083d74483a20dadb699372a5a75b7326ac52adf0110a99dc0d26763f
SHA512

fe594daf086e1696269d35490eddb8c8418a0fa667ca1b99a55ad1b139ff340bf396f121c95bf00bd8d2dd339c0d7feafd0546404c1046cd50490a4af79f300a
SSDEEP

3072:Mq0ZZzJQyRVF/ZvB73NfgZjajLv39/7zMDILx:CJXRV91v2jEv3V

Score

10^/10

strela stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3173c9f5083d74483a20dadb699372a5a75b7326ac52adf0110a99dc0d26763f.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

3173c9f5083d74483a20dadb699372a5a75b7326ac52adf0110a99dc0d26763f.dll

Resource

win11-20240709-en

windows11-21h2-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  3173c9f5083d74483a20dadb699372a5a75b7326ac52adf0110a99dc0d26763f
- Size
  
  121KB
- MD5
  
  318f2e9bceeb4fe20d8a093906e33dd3
- SHA1
  
  4f870cbd5ae82b243f3e7d5e47b82f08b2917063
- SHA256
  
  3173c9f5083d74483a20dadb699372a5a75b7326ac52adf0110a99dc0d26763f
- SHA512
  
  fe594daf086e1696269d35490eddb8c8418a0fa667ca1b99a55ad1b139ff340bf396f121c95bf00bd8d2dd339c0d7feafd0546404c1046cd50490a4af79f300a
- SSDEEP
  
  3072:Mq0ZZzJQyRVF/ZvB73NfgZjajLv39/7zMDILx:CJXRV91v2jEv3V
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy