Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    013c6ee3da29d62974a91c13c5db2c515874d60526143d6be9e91aab5d6c6c9c

  • Size

    124KB

  • Sample

    240715-pfa64asdjh

  • MD5

    b2e5934aba3aeb3d6fab4761b34a2e06

  • SHA1

    0895c2248b1ba8e7281630a46910b2dab6bbae34

  • SHA256

    013c6ee3da29d62974a91c13c5db2c515874d60526143d6be9e91aab5d6c6c9c

  • SHA512

    8041a983fadd684393dad9dd25c15d03293f8591823988b673db5ff3cbc7f95909b94e82bcc5a166365346a2f025d919d9b1f8fd193bac3e0a90470d7dbde414

  • SSDEEP

    3072:Cs9EtpVXeHILq/SfdHPFWzCjBN+5089W14oNZL/P:CsGtpVXkAq/0vc2dE5s4oNx/P

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      013c6ee3da29d62974a91c13c5db2c515874d60526143d6be9e91aab5d6c6c9c

    • Size

      124KB

    • MD5

      b2e5934aba3aeb3d6fab4761b34a2e06

    • SHA1

      0895c2248b1ba8e7281630a46910b2dab6bbae34

    • SHA256

      013c6ee3da29d62974a91c13c5db2c515874d60526143d6be9e91aab5d6c6c9c

    • SHA512

      8041a983fadd684393dad9dd25c15d03293f8591823988b673db5ff3cbc7f95909b94e82bcc5a166365346a2f025d919d9b1f8fd193bac3e0a90470d7dbde414

    • SSDEEP

      3072:Cs9EtpVXeHILq/SfdHPFWzCjBN+5089W14oNZL/P:CsGtpVXkAq/0vc2dE5s4oNx/P

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks