strela | 8245cce9fbf6eb086730c8cdec00250a9c5e8363858c6cac01f124b830fb5c15

Analysis

max time kernel
23s
max time network
17s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
16-07-2024 06:44

Target

83b34add5c2a11ed7c8abc28f31d41f0N.dll
Size

122KB
MD5

83b34add5c2a11ed7c8abc28f31d41f0
SHA1

d5d5ef9656e4834e50ffb7f9a3a73c63604b77f0
SHA256

8245cce9fbf6eb086730c8cdec00250a9c5e8363858c6cac01f124b830fb5c15
SHA512

e64962c69a0f7dd1b0e183afc8bac9a69b341b186b2c16dd1d24ee6a87c716dd8e2d9466c4c76558100a623d652c1b43b8df956b37db677afc97e7581ef5b89d
SSDEEP

3072:ogdsb83Isk51TcxfuEDHjoEmUyHrBTrY+jFMN5fH6:lOdsk51T6uEb/mDHVTr7U5

Score

10^/10

strela stealer

Family

strela

45.9.74.32

Attributes

Detects Strela Stealer payload 1 IoCs

resource	yara_rule
behavioral1/memory/2200-0-0x00000000003D0000-0x00000000003F2000-memory.dmp	family_strela

Strela stealer
An info stealer targeting mail credentials first seen in late 2022.
stealer strela

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\83b34add5c2a11ed7c8abc28f31d41f0N.dll,#1
1⤵
PID:2200

memory/2200-0-0x00000000003D0000-0x00000000003F2000-memory.dmp

Filesize
136KB

Download