strela | bd56fb4c5e103e710f8ffdc85dc55c5510fda5f5798f39403aa2db03a1e4da45

Analysis

max time kernel
92s
max time network
94s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
16-07-2024 08:09

Target

90f976e2765a470066deb8cd1c4eaf40N.dll
Size

124KB
MD5

90f976e2765a470066deb8cd1c4eaf40
SHA1

9af46da629b12282e71ec45a0cdffd0beef97d94
SHA256

bd56fb4c5e103e710f8ffdc85dc55c5510fda5f5798f39403aa2db03a1e4da45
SHA512

8395674ae491f570a0715bdc13f50af70c28f92473a6d77e9fe9de9aa211c2ca93cf2c938d1593b2124a5bf28f4d810a637a06b8e17c45d07bb6662f4e2d9035
SSDEEP

3072:dn7qH+RP7O+7GS9JdFfbUgfQIFo6n3kIfF4bX5O+hqhEN:d7ZPt739JdJbUgfQIJ31N4bDhq8

Score

10^/10

strela stealer

Family

strela

45.9.74.32

Attributes

Detects Strela Stealer payload 1 IoCs

resource	yara_rule
behavioral2/memory/1796-0-0x00000138039F0000-0x0000013803A12000-memory.dmp	family_strela

Strela stealer
An info stealer targeting mail credentials first seen in late 2022.
stealer strela

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\90f976e2765a470066deb8cd1c4eaf40N.dll,#1
1⤵
PID:1796

memory/1796-0-0x00000138039F0000-0x0000013803A12000-memory.dmp

Filesize
136KB

Download