strela | 55887e2d9b111eca10984aecbbd53df80b36d43e480af0c6e5246c4c8825ce93

Analysis

max time kernel
148s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
15/07/2024, 12:12

Target

55887e2d9b111eca10984aecbbd53df80b36d43e480af0c6e5246c4c8825ce93.dll
Size

122KB
MD5

c07869a032a487a29a1384dc3880f7c6
SHA1

ced51565aaa0722993d1b0a822a84180a36c40a2
SHA256

55887e2d9b111eca10984aecbbd53df80b36d43e480af0c6e5246c4c8825ce93
SHA512

457f026f047fb5dca91413dd73a247906addfb94efa197d676e758e0cef3beee5d2edd11180ad40edd7d5f0f0d025de5c54e79dd526bb68b8a61e90bc9f39d87
SSDEEP

3072:A6tuL27E0D+tFdKPeK9t6QvGARKHDfqd7hf2xzinsx:A6dfiRKPeK9tXAi/uFx

Score

10^/10

strela stealer

Family

strela

45.9.74.32

Attributes

Detects Strela Stealer payload 1 IoCs

resource	yara_rule
behavioral1/memory/3432-0-0x0000021BD74D0000-0x0000021BD74F2000-memory.dmp	family_strela

Strela stealer
An info stealer targeting mail credentials first seen in late 2022.
stealer strela

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\55887e2d9b111eca10984aecbbd53df80b36d43e480af0c6e5246c4c8825ce93.dll,#1
1⤵
PID:3432

memory/3432-0-0x0000021BD74D0000-0x0000021BD74F2000-memory.dmp

Filesize
136KB

Download