Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6e345ea1116374fe8fdaa9226aa632933cf640b30e8b37773cb663c31a0af3d8

  • Size

    123KB

  • Sample

    240715-prqe6a1fkj

  • MD5

    e9b5d04147ffd55f715594f92df601df

  • SHA1

    e4ad84a1d7a4dd7bba04165fae1186000d3fb200

  • SHA256

    6e345ea1116374fe8fdaa9226aa632933cf640b30e8b37773cb663c31a0af3d8

  • SHA512

    766fec925cc7998334e264ec125d088e7b863da8856106fe7c26a0c60b4328f56730d29dc872e53c380e8c6a40f645cf782e177074e0d9ccf48aff8805acaef4

  • SSDEEP

    3072:pC8SHpWrupUTAdwkNmFqsUZtSqeI9uT6K7b4rKly1kqec:pCJHpWruCaisSqeIa4raq

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      6e345ea1116374fe8fdaa9226aa632933cf640b30e8b37773cb663c31a0af3d8

    • Size

      123KB

    • MD5

      e9b5d04147ffd55f715594f92df601df

    • SHA1

      e4ad84a1d7a4dd7bba04165fae1186000d3fb200

    • SHA256

      6e345ea1116374fe8fdaa9226aa632933cf640b30e8b37773cb663c31a0af3d8

    • SHA512

      766fec925cc7998334e264ec125d088e7b863da8856106fe7c26a0c60b4328f56730d29dc872e53c380e8c6a40f645cf782e177074e0d9ccf48aff8805acaef4

    • SSDEEP

      3072:pC8SHpWrupUTAdwkNmFqsUZtSqeI9uT6K7b4rKly1kqec:pCJHpWruCaisSqeIa4raq

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks