Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78fc87a546360e2a449dfa67bc6a613d6dcaafb8671606e1a0bec9f1713d77db

  • Size

    124KB

  • Sample

    240715-pbw8rsyclr

  • MD5

    c1123458676513e8f052e49ecece5239

  • SHA1

    df4dc34fc7e9edabc98a62bfd495f3c38a37695b

  • SHA256

    78fc87a546360e2a449dfa67bc6a613d6dcaafb8671606e1a0bec9f1713d77db

  • SHA512

    d6df135af84aae4c894fae9dc79e6b0d4739ac8a8c863e5eba09e8f5cc15a212fb1ca26573004174f882b1e803ae8a2e8508e417061a34bb3d8590f03f157cca

  • SSDEEP

    3072:ycznhv4AqU0umHCB6INEVJATOVh6LTs/vs9niKBRURX:ycfqU3EV2TOug/vsViKf0

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      78fc87a546360e2a449dfa67bc6a613d6dcaafb8671606e1a0bec9f1713d77db

    • Size

      124KB

    • MD5

      c1123458676513e8f052e49ecece5239

    • SHA1

      df4dc34fc7e9edabc98a62bfd495f3c38a37695b

    • SHA256

      78fc87a546360e2a449dfa67bc6a613d6dcaafb8671606e1a0bec9f1713d77db

    • SHA512

      d6df135af84aae4c894fae9dc79e6b0d4739ac8a8c863e5eba09e8f5cc15a212fb1ca26573004174f882b1e803ae8a2e8508e417061a34bb3d8590f03f157cca

    • SSDEEP

      3072:ycznhv4AqU0umHCB6INEVJATOVh6LTs/vs9niKBRURX:ycfqU3EV2TOug/vsViKf0

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks