strela | 5517091249b8c74a5a7d55ffbd8c454d7f7221fa4404a84d15578b8ca7c9d0a9 | Triage

Sharing

General

Target

5517091249b8c74a5a7d55ffbd8c454d7f7221fa4404a84d15578b8ca7c9d0a9
Size

122KB
Sample

240715-pr49batgpb
MD5

e04a33b0ae9b51a9fd5a4292d3ba6fc2
SHA1

fbd0b7dd9975a8d5ab32bf9909fd4fd567d3ca3e
SHA256

5517091249b8c74a5a7d55ffbd8c454d7f7221fa4404a84d15578b8ca7c9d0a9
SHA512

9c28629ff721c8f522f45d718815d69b205f197709303838fb81d60c3f0a90ab0ab385dbec8ff76340a5aa616c4908491b8c1bd6af2944e419a00e5fadf255c6
SSDEEP

3072:rnbzoxfu4Z8+zetHGevIcPICxfwybYU8WR:jwxW4Z2HBzPtf9bB

Score

10^/10

strela stealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  5517091249b8c74a5a7d55ffbd8c454d7f7221fa4404a84d15578b8ca7c9d0a9
- Size
  
  122KB
- MD5
  
  e04a33b0ae9b51a9fd5a4292d3ba6fc2
- SHA1
  
  fbd0b7dd9975a8d5ab32bf9909fd4fd567d3ca3e
- SHA256
  
  5517091249b8c74a5a7d55ffbd8c454d7f7221fa4404a84d15578b8ca7c9d0a9
- SHA512
  
  9c28629ff721c8f522f45d718815d69b205f197709303838fb81d60c3f0a90ab0ab385dbec8ff76340a5aa616c4908491b8c1bd6af2944e419a00e5fadf255c6
- SSDEEP
  
  3072:rnbzoxfu4Z8+zetHGevIcPICxfwybYU8WR:jwxW4Z2HBzPtf9bB
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2