Overview

overview

10

Static

static

3

c5bcc2435e...0N.dll

windows7-x64

10

c5bcc2435e...0N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c5bcc2435ed4774a268b884a688bcf40N.exe

  • Size

    125KB

  • Sample

    240716-qfn9dsxand

  • MD5

    c5bcc2435ed4774a268b884a688bcf40

  • SHA1

    a831b1fce34ac60a1fbc618f3eac715081f3610b

  • SHA256

    4c6e71c719a28f60060c5f0c5517b5ff3c0f700e3a609666472381e2bd5e0b01

  • SHA512

    54f068c633a42079d012737884ff3c3d4f7299bac7716fbf54f5ed1e1baa859f6e3cfd8bcef868dc232c7ca3e53d2d945e4c32620deaa7067b7f525014b9cde6

  • SSDEEP

    3072:DnuTlDKhIq9L6HOJNYvQnIQYlKfs03yS1pC/xYIjT8+:DnuTlJq16uJN8QnLYlKByS1pwxYIjT8+

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      c5bcc2435ed4774a268b884a688bcf40N.exe

    • Size

      125KB

    • MD5

      c5bcc2435ed4774a268b884a688bcf40

    • SHA1

      a831b1fce34ac60a1fbc618f3eac715081f3610b

    • SHA256

      4c6e71c719a28f60060c5f0c5517b5ff3c0f700e3a609666472381e2bd5e0b01

    • SHA512

      54f068c633a42079d012737884ff3c3d4f7299bac7716fbf54f5ed1e1baa859f6e3cfd8bcef868dc232c7ca3e53d2d945e4c32620deaa7067b7f525014b9cde6

    • SSDEEP

      3072:DnuTlDKhIq9L6HOJNYvQnIQYlKfs03yS1pC/xYIjT8+:DnuTlJq16uJN8QnLYlKByS1pwxYIjT8+

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks