Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2f2690bfdfc3a112fb51f366175579ff56b29f041c2380fe2a4920a62c2424d0

  • Size

    123KB

  • Sample

    240715-pfx1vssema

  • MD5

    c786c923df3c19e5c52f67e0e76a5c1a

  • SHA1

    e7e1cebfd4ea2dd82d464e74640b291d560659d2

  • SHA256

    2f2690bfdfc3a112fb51f366175579ff56b29f041c2380fe2a4920a62c2424d0

  • SHA512

    d62ac8f37aa61b288919a734d49b4780b758bca0826db465d0800460b34ba56c99b03a141c1a579b5bae63e574c6bbf87cc644093ceac1cfd9c5094b3c8df3e3

  • SSDEEP

    1536:3RzKmaXJFhx4HeLYL2Y4Tj01qG/d465mi0ykaKNaS3t9sNCW+uqWiAJ8uYFblg:Bz8JPsL2Y4X01X/G/3Aw3Z

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      2f2690bfdfc3a112fb51f366175579ff56b29f041c2380fe2a4920a62c2424d0

    • Size

      123KB

    • MD5

      c786c923df3c19e5c52f67e0e76a5c1a

    • SHA1

      e7e1cebfd4ea2dd82d464e74640b291d560659d2

    • SHA256

      2f2690bfdfc3a112fb51f366175579ff56b29f041c2380fe2a4920a62c2424d0

    • SHA512

      d62ac8f37aa61b288919a734d49b4780b758bca0826db465d0800460b34ba56c99b03a141c1a579b5bae63e574c6bbf87cc644093ceac1cfd9c5094b3c8df3e3

    • SSDEEP

      1536:3RzKmaXJFhx4HeLYL2Y4Tj01qG/d465mi0ykaKNaS3t9sNCW+uqWiAJ8uYFblg:Bz8JPsL2Y4X01X/G/3Aw3Z

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks