Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    70806e3809ef5ec88a820230a0e04aadf6160dab17365920428dd148a1ae1e3a

  • Size

    123KB

  • Sample

    240715-pelanssbra

  • MD5

    ba9b99f8245d32cf424958ee594be5ce

  • SHA1

    11c26ccd417727345a06c93f1dae2d13b5b8b57a

  • SHA256

    70806e3809ef5ec88a820230a0e04aadf6160dab17365920428dd148a1ae1e3a

  • SHA512

    50feeb429ce9c24751163f31b3ff2c6eb5e12b31f2d9c459ef4af5104834f7a20351a44c20fa564ba84347592b636339bd261e7fe3c4271b06fadb26b345dd9d

  • SSDEEP

    3072:Bounq1eFpowPB2oI+g9595n/Cr91fSZfN63y/mMA8cUPYkI96:hnqOpowPpIR9ZkxSN63y/mGPYkII

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      70806e3809ef5ec88a820230a0e04aadf6160dab17365920428dd148a1ae1e3a

    • Size

      123KB

    • MD5

      ba9b99f8245d32cf424958ee594be5ce

    • SHA1

      11c26ccd417727345a06c93f1dae2d13b5b8b57a

    • SHA256

      70806e3809ef5ec88a820230a0e04aadf6160dab17365920428dd148a1ae1e3a

    • SHA512

      50feeb429ce9c24751163f31b3ff2c6eb5e12b31f2d9c459ef4af5104834f7a20351a44c20fa564ba84347592b636339bd261e7fe3c4271b06fadb26b345dd9d

    • SSDEEP

      3072:Bounq1eFpowPB2oI+g9595n/Cr91fSZfN63y/mMA8cUPYkI96:hnqOpowPpIR9ZkxSN63y/mGPYkII

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks