Overview

overview

10

Static

static

3

a87185a905...0N.dll

windows7-x64

10

a87185a905...0N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a87185a905c0f8a61b9e3f88fa187090N.exe

  • Size

    211KB

  • Sample

    240722-nr8q3avhqa

  • MD5

    a87185a905c0f8a61b9e3f88fa187090

  • SHA1

    7a63c8d689f8739b37952a932f20996fdf4af989

  • SHA256

    de09f25156c8719d43e06acb77511c4daf52e1ea8183a0750c12e2a22f2f23e0

  • SHA512

    d295f489a7914792d70f299f5c8fe619973a9f8d74de36f0c48e024af54b466d060020a6bdfb727be754f658cfe89b803911290bee04c8944235b563d13c51cb

  • SSDEEP

    3072:F7Jg4oyReBhW1nLAC/EIHdJ/lhmshD+lYnr94k5yp1AJIhj+ZGmVKUB:F79ovsnLAC3HmshDc2ryFZhuGAKUB

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.176

Attributes
  • url_path

    /server.php

  • user_agent

    Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537

Targets

    • Target

      a87185a905c0f8a61b9e3f88fa187090N.exe

    • Size

      211KB

    • MD5

      a87185a905c0f8a61b9e3f88fa187090

    • SHA1

      7a63c8d689f8739b37952a932f20996fdf4af989

    • SHA256

      de09f25156c8719d43e06acb77511c4daf52e1ea8183a0750c12e2a22f2f23e0

    • SHA512

      d295f489a7914792d70f299f5c8fe619973a9f8d74de36f0c48e024af54b466d060020a6bdfb727be754f658cfe89b803911290bee04c8944235b563d13c51cb

    • SSDEEP

      3072:F7Jg4oyReBhW1nLAC/EIHdJ/lhmshD+lYnr94k5yp1AJIhj+ZGmVKUB:F79ovsnLAC3HmshDc2ryFZhuGAKUB

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks