strela | 94e54022843383f82f00c7753f06a95f9c45f5bde3577becab1f3b848fabdd0f | Triage

Submit
Reports

Overview

overview

Static

static

3

a98b0d1920...0N.dll

windows7-x64

a98b0d1920...0N.dll

windows10-2004-x64

Sharing

General

Target

a98b0d1920f1aa75a779861e9a8978c0N.exe
Size

124KB
Sample

240716-mnwrna1dph
MD5

a98b0d1920f1aa75a779861e9a8978c0
SHA1

230d80dea167b500e5df199940fad7346679c04b
SHA256

94e54022843383f82f00c7753f06a95f9c45f5bde3577becab1f3b848fabdd0f
SHA512

dac2ec98c194e2bb69ee1bbf467f13ff30a9f39428a64eeb0945c7f210d78e4272fc50d7f3d4d7532f746ccac65492a020c3eef822cdc97e2f5cf0e643a829d7
SSDEEP

3072:ZJH2JOKUG05wrIBRLxTIIv+noXch/KJpe8rLgh37MCS:ZYJOKUGEc8ZxMIWB/oZ

Score

10^/10

strela stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a98b0d1920f1aa75a779861e9a8978c0N.dll

Resource

win7-20240705-en

windows7-x64

2 signatures

120 seconds

Behavioral task

behavioral2

Sample

a98b0d1920f1aa75a779861e9a8978c0N.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

120 seconds

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  a98b0d1920f1aa75a779861e9a8978c0N.exe
- Size
  
  124KB
- MD5
  
  a98b0d1920f1aa75a779861e9a8978c0
- SHA1
  
  230d80dea167b500e5df199940fad7346679c04b
- SHA256
  
  94e54022843383f82f00c7753f06a95f9c45f5bde3577becab1f3b848fabdd0f
- SHA512
  
  dac2ec98c194e2bb69ee1bbf467f13ff30a9f39428a64eeb0945c7f210d78e4272fc50d7f3d4d7532f746ccac65492a020c3eef822cdc97e2f5cf0e643a829d7
- SSDEEP
  
  3072:ZJH2JOKUG05wrIBRLxTIIv+noXch/KJpe8rLgh37MCS:ZYJOKUGEc8ZxMIWB/oZ
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy