Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f42599075d33bb661e7f193441fe14090c7f6bb2f1fc6ea950ed3622d9cc70c7

  • Size

    124KB

  • Sample

    240715-pfawbszbpj

  • MD5

    23c5a111a09c2a5346d4e8d31a6e5e5d

  • SHA1

    01166043c20d57d334a35e8a133918c02d80b7e0

  • SHA256

    f42599075d33bb661e7f193441fe14090c7f6bb2f1fc6ea950ed3622d9cc70c7

  • SHA512

    de66be4ad7f791ddfdc64d7ade7adc4631436acf7742b896a1a49cc95c33de85daea95946c0906d5b93544e3ad6e766be00a82a33dbe286bf2bf69f99a56a711

  • SSDEEP

    3072:32dTOEG1gG1DN6ouWlmRHZi/Pb87HZjLl6Vi0L:Gd6NqG1oWlmxZlHZXl6V

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      f42599075d33bb661e7f193441fe14090c7f6bb2f1fc6ea950ed3622d9cc70c7

    • Size

      124KB

    • MD5

      23c5a111a09c2a5346d4e8d31a6e5e5d

    • SHA1

      01166043c20d57d334a35e8a133918c02d80b7e0

    • SHA256

      f42599075d33bb661e7f193441fe14090c7f6bb2f1fc6ea950ed3622d9cc70c7

    • SHA512

      de66be4ad7f791ddfdc64d7ade7adc4631436acf7742b896a1a49cc95c33de85daea95946c0906d5b93544e3ad6e766be00a82a33dbe286bf2bf69f99a56a711

    • SSDEEP

      3072:32dTOEG1gG1DN6ouWlmRHZi/Pb87HZjLl6Vi0L:Gd6NqG1oWlmxZlHZXl6V

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks