Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0eb90437c98bfe99f64970166fd2209442235f6954690f5cd36b4357b3be22d5

  • Size

    124KB

  • Sample

    240715-pgjvmasfnf

  • MD5

    afe947d3be522d21cdc341fd0fbd00ed

  • SHA1

    a6eba43e45d379eb108d64362e1e6cacf68c9c70

  • SHA256

    0eb90437c98bfe99f64970166fd2209442235f6954690f5cd36b4357b3be22d5

  • SHA512

    457731378f5c082d3d15711503f8b50e09d6cf111bf6068afa9a110d1c1da78facdbe04144ef6d39e765d5d9beee5e86615725f3777a8256c7716875c4547669

  • SSDEEP

    3072:y5qGMOj31t4S+ezOOS0/efkUkLTbbli5OnKAz:y5pj3TV+3D/fRknbo5

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      0eb90437c98bfe99f64970166fd2209442235f6954690f5cd36b4357b3be22d5

    • Size

      124KB

    • MD5

      afe947d3be522d21cdc341fd0fbd00ed

    • SHA1

      a6eba43e45d379eb108d64362e1e6cacf68c9c70

    • SHA256

      0eb90437c98bfe99f64970166fd2209442235f6954690f5cd36b4357b3be22d5

    • SHA512

      457731378f5c082d3d15711503f8b50e09d6cf111bf6068afa9a110d1c1da78facdbe04144ef6d39e765d5d9beee5e86615725f3777a8256c7716875c4547669

    • SSDEEP

      3072:y5qGMOj31t4S+ezOOS0/efkUkLTbbli5OnKAz:y5pj3TV+3D/fRknbo5

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks