strela | bae59ebe80b525b4b5cd202921fe07d00930bd13d5cf0e8fc94406d9b1a5e398 | Triage

Submit
Reports

Overview

overview

Static

static

3

17072024_1...17.dll

windows7-x64

17072024_1...17.dll

windows10-2004-x64

Sharing

General

Target

17072024_1400_143131067028517.dll
Size

187KB
Sample

240717-razcvaxbjg
MD5

e2b61b12fa98e5302b4d809ff130348e
SHA1

290bb3280b81e70374bb56eecc7ed7af4f04533c
SHA256

bae59ebe80b525b4b5cd202921fe07d00930bd13d5cf0e8fc94406d9b1a5e398
SHA512

0f32a41a304b8c3de0c140afcbedde8727adf137d0694852058d2064ab70658a4e4cf903ca8c619f7a2a32c237146235e3bf52243ddd5fa08fe8c482296a5c31
SSDEEP

3072:IU0xn4KDOXumCfvgaddnsxQEuCCzRH8SeyE1KaA/yjnG2+HoZMUgiBruI9DLLo8/:cNuumC7fndZCCN8jTP+YTZ9DL

Score

10^/10

strela stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

17072024_1400_143131067028517.dll

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

17072024_1400_143131067028517.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

strela

C2

45.9.74.36

Attributes

url_path
/out.php
user_agent
Mozilla/4.0 (compatible)

Targets

- Target
  
  17072024_1400_143131067028517.dll
- Size
  
  187KB
- MD5
  
  e2b61b12fa98e5302b4d809ff130348e
- SHA1
  
  290bb3280b81e70374bb56eecc7ed7af4f04533c
- SHA256
  
  bae59ebe80b525b4b5cd202921fe07d00930bd13d5cf0e8fc94406d9b1a5e398
- SHA512
  
  0f32a41a304b8c3de0c140afcbedde8727adf137d0694852058d2064ab70658a4e4cf903ca8c619f7a2a32c237146235e3bf52243ddd5fa08fe8c482296a5c31
- SSDEEP
  
  3072:IU0xn4KDOXumCfvgaddnsxQEuCCzRH8SeyE1KaA/yjnG2+HoZMUgiBruI9DLLo8/:cNuumC7fndZCCN8jTP+YTZ9DL
Score

10^/10

strela stealer
- Detects Strela Stealer payload
- Strela stealer
  An info stealer targeting mail credentials first seen in late 2022.
  stealer strela
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy