Overview

overview

10

Static

static

3

50c7c17883...0N.dll

windows7-x64

10

50c7c17883...0N.dll

windows10-2004-x64

10

Analysis

  • max time kernel
    26s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    20-07-2024 05:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    50c7c1788367e4295f2922ee3ed90d00N.dll

  • Size

    168KB

  • MD5

    50c7c1788367e4295f2922ee3ed90d00

  • SHA1

    07cb22c8dc1d8076f697d55b80dcc6f1fcb02015

  • SHA256

    4d3f48eb70baed6c9e8c4d2f4952615e772b664e1478fccfaab69de7a963c577

  • SHA512

    6e498c1e88ddf6cdee772b33561ea85719597b3a22cb673585adb73b1b95162e034322895a5e70bdf8ffce8a58d5345dad2ff9cddf93163f2214e0d3b7b7410c

  • SSDEEP

    3072:4w3purp/MqfSt7P736SNfLYiU1gBXpf45lphLFB8uQ973GEBU/p0Xt930KDS:OUqwjNf0wbeVI97WEBqs93h2

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.36

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Signatures

  • Detects Strela Stealer payload 1 IoCs
  • Strela stealer

    An info stealer targeting mail credentials first seen in late 2022.

    stealerstrela

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\50c7c1788367e4295f2922ee3ed90d00N.dll
    1⤵
      PID:2060

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2060-0-0x0000000001CE0000-0x0000000001D02000-memory.dmp

      Filesize

      136KB

      Download