strela | bb89c0f2a97cc844b8da1aa70b44c4805397d8845ba19b57cb3b58512730f021 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

Copy URL Twitter E-mail

General

Target

bb89c0f2a97cc844b8da1aa70b44c4805397d8845ba19b57cb3b58512730f021
Size

124KB
Sample

240715-pj6geazhqq
MD5

cbc0e818eaa4ab4f5e0ee9d358be42eb
SHA1

1764e2dd5eeb0f0bcdf4764ea79f18f0e20815fd
SHA256

bb89c0f2a97cc844b8da1aa70b44c4805397d8845ba19b57cb3b58512730f021
SHA512

fb0d585682aa9b9a07522f7f1908149c62dc9675bd822429cd46b0c41da74d8414a7a27eca2d4f1bcea1092b63765c771570210ee00b4f8a54abb78051057460
SSDEEP

3072:PDLU/y5PZVDPT8859msNQQ4ZLoRA+yTWG:P0y9DD2sNQ1IuW

Score

10^/10

strela stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bb89c0f2a97cc844b8da1aa70b44c4805397d8845ba19b57cb3b58512730f021.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

bb89c0f2a97cc844b8da1aa70b44c4805397d8845ba19b57cb3b58512730f021.dll

Resource

win11-20240709-en

windows11-21h2-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  bb89c0f2a97cc844b8da1aa70b44c4805397d8845ba19b57cb3b58512730f021
- Size
  
  124KB
- MD5
  
  cbc0e818eaa4ab4f5e0ee9d358be42eb
- SHA1
  
  1764e2dd5eeb0f0bcdf4764ea79f18f0e20815fd
- SHA256
  
  bb89c0f2a97cc844b8da1aa70b44c4805397d8845ba19b57cb3b58512730f021
- SHA512
  
  fb0d585682aa9b9a07522f7f1908149c62dc9675bd822429cd46b0c41da74d8414a7a27eca2d4f1bcea1092b63765c771570210ee00b4f8a54abb78051057460
- SSDEEP
  
  3072:PDLU/y5PZVDPT8859msNQQ4ZLoRA+yTWG:P0y9DD2sNQ1IuW
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy