strela | f2fd6e2f713282bd9225a4d9ddec7ea1e47607d24b55ff3bc58a36555c6db4bb | Triage

Submit
Reports

Overview

overview

Static

static

3

0a43bd4b54...0N.dll

windows7-x64

0a43bd4b54...0N.dll

windows10-2004-x64

Sharing

General

Target

0a43bd4b54e19d004163dccec4beb6f0N.exe
Size

125KB
Sample

240716-zg9q6ascjg
MD5

0a43bd4b54e19d004163dccec4beb6f0
SHA1

648e4f007fdd9f58e5650b6b881b0bd8177ca22f
SHA256

f2fd6e2f713282bd9225a4d9ddec7ea1e47607d24b55ff3bc58a36555c6db4bb
SHA512

09a2a2a8e1ed04d1dafa41956e546ed0edf7d507f8383be79df3173a4dfb50b6c5928e288fd4f8bfda2bd9efffcd0d940cf9c94893f22fbc0fcd1335b4cd7c5b
SSDEEP

3072:QhBndvjb+N69mS0uv3k4oVd0AH6M+kK2CyIURjhGwhbwoAxq29fFQbg6v:QhBdvjb+No/vk6rFhUNhGEbJwt99Qc

Score

10^/10

strela stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0a43bd4b54e19d004163dccec4beb6f0N.dll

Resource

win7-20240708-en

windows7-x64

2 signatures

120 seconds

Behavioral task

behavioral2

Sample

0a43bd4b54e19d004163dccec4beb6f0N.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

120 seconds

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  0a43bd4b54e19d004163dccec4beb6f0N.exe
- Size
  
  125KB
- MD5
  
  0a43bd4b54e19d004163dccec4beb6f0
- SHA1
  
  648e4f007fdd9f58e5650b6b881b0bd8177ca22f
- SHA256
  
  f2fd6e2f713282bd9225a4d9ddec7ea1e47607d24b55ff3bc58a36555c6db4bb
- SHA512
  
  09a2a2a8e1ed04d1dafa41956e546ed0edf7d507f8383be79df3173a4dfb50b6c5928e288fd4f8bfda2bd9efffcd0d940cf9c94893f22fbc0fcd1335b4cd7c5b
- SSDEEP
  
  3072:QhBndvjb+N69mS0uv3k4oVd0AH6M+kK2CyIURjhGwhbwoAxq29fFQbg6v:QhBdvjb+No/vk6rFhUNhGEbJwt99Qc
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy