Overview

overview

10

Static

static

3

6a70b1364b...0N.dll

windows7-x64

10

6a70b1364b...0N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6a70b1364b42426d816ccb8506119c20N.exe

  • Size

    123KB

  • Sample

    240716-e29axaxfqc

  • MD5

    6a70b1364b42426d816ccb8506119c20

  • SHA1

    d98bfc0be94c1e569bcc6be45116671f6b435104

  • SHA256

    619329cca87db311e9e81f8d1eeda43db97e0493c1a8f22c22eb6486bad7aabb

  • SHA512

    edcd69f16ca38af4e2c5cf5563ccb91b7bc931dc923a2528556b3884fe30f105ff0df624eb7b35c543ecc6a1bf1e3a5ac97aaa68b879ed07b54f527cef526ff3

  • SSDEEP

    3072:ivJBOw+x/vXzvMFdeTO2PkGcPFVIDUscs5:ivJBsx//2adPLDb75

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      6a70b1364b42426d816ccb8506119c20N.exe

    • Size

      123KB

    • MD5

      6a70b1364b42426d816ccb8506119c20

    • SHA1

      d98bfc0be94c1e569bcc6be45116671f6b435104

    • SHA256

      619329cca87db311e9e81f8d1eeda43db97e0493c1a8f22c22eb6486bad7aabb

    • SHA512

      edcd69f16ca38af4e2c5cf5563ccb91b7bc931dc923a2528556b3884fe30f105ff0df624eb7b35c543ecc6a1bf1e3a5ac97aaa68b879ed07b54f527cef526ff3

    • SSDEEP

      3072:ivJBOw+x/vXzvMFdeTO2PkGcPFVIDUscs5:ivJBsx//2adPLDb75

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks