General

  • Target

    b559728d5f951b207f3d0e80400384b80649be2c2681a516d89044897c0ac1f0

  • Size

    124KB

  • Sample

    240715-pje98azgqq

  • MD5

    605f717cfdd0c4cf233e0f86ad3afd89

  • SHA1

    26feba711f9616f663b8369b658fc32a5c8dd499

  • SHA256

    b559728d5f951b207f3d0e80400384b80649be2c2681a516d89044897c0ac1f0

  • SHA512

    43447cbe9c12780acc2422b7e1c08f9d15b768a18a02373bc83ba17584026da436c27eed3c04e5d92db43b4222f1623edb1d97480b3abc2d7a9e0ad06cda0f7e

  • SSDEEP

    3072:1a8HP+TT4z99EjrzO4GwfdmRvwQj12UKk:1auG6ozO4GwC7j12r

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      b559728d5f951b207f3d0e80400384b80649be2c2681a516d89044897c0ac1f0

    • Size

      124KB

    • MD5

      605f717cfdd0c4cf233e0f86ad3afd89

    • SHA1

      26feba711f9616f663b8369b658fc32a5c8dd499

    • SHA256

      b559728d5f951b207f3d0e80400384b80649be2c2681a516d89044897c0ac1f0

    • SHA512

      43447cbe9c12780acc2422b7e1c08f9d15b768a18a02373bc83ba17584026da436c27eed3c04e5d92db43b4222f1623edb1d97480b3abc2d7a9e0ad06cda0f7e

    • SSDEEP

      3072:1a8HP+TT4z99EjrzO4GwfdmRvwQj12UKk:1auG6ozO4GwC7j12r

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks