strela | ec7827fa1e5e749c06d754ed4aebaf4b64eea381682079068aa75ee4010b353b | Triage

Submit
Reports

Overview

overview

Static

static

3

8133dd308d...0N.dll

windows7-x64

8133dd308d...0N.dll

windows10-2004-x64

Sharing

General

Target

8133dd308d7dfd992acd3a5b18029bd0N.exe
Size

124KB
Sample

240716-g8kl8syfkr
MD5

8133dd308d7dfd992acd3a5b18029bd0
SHA1

548251862bed78bb7e0567ec6c27e758ba058959
SHA256

ec7827fa1e5e749c06d754ed4aebaf4b64eea381682079068aa75ee4010b353b
SHA512

edd2e9880292f4d02bdb088d7061e42735f58d00bf45e46ba57bccdb2b81769c0c83aab8a295531d77fb84fb6739d02e30b74d54f30db9afbe2dc925c9a48323
SSDEEP

3072:LdQEkTsSpOl1T0eirh/9gYvtDsNKOYlbK:LdQE2sGODIeWNTOYFK

Score

10^/10

strela stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8133dd308d7dfd992acd3a5b18029bd0N.dll

Resource

win7-20240708-en

windows7-x64

2 signatures

120 seconds

Behavioral task

behavioral2

Sample

8133dd308d7dfd992acd3a5b18029bd0N.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

120 seconds

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  8133dd308d7dfd992acd3a5b18029bd0N.exe
- Size
  
  124KB
- MD5
  
  8133dd308d7dfd992acd3a5b18029bd0
- SHA1
  
  548251862bed78bb7e0567ec6c27e758ba058959
- SHA256
  
  ec7827fa1e5e749c06d754ed4aebaf4b64eea381682079068aa75ee4010b353b
- SHA512
  
  edd2e9880292f4d02bdb088d7061e42735f58d00bf45e46ba57bccdb2b81769c0c83aab8a295531d77fb84fb6739d02e30b74d54f30db9afbe2dc925c9a48323
- SSDEEP
  
  3072:LdQEkTsSpOl1T0eirh/9gYvtDsNKOYlbK:LdQE2sGODIeWNTOYFK
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy