General

  • Target

    0767f22f02713717a92c61c8f844cbe0N.exe

  • Size

    185KB

  • Sample

    240723-zhc4ks1ald

  • MD5

    0767f22f02713717a92c61c8f844cbe0

  • SHA1

    e6638791005c7719790674f59620f126a61d7495

  • SHA256

    047544bd45d8fcf796798c7a8d9658d6b3c6a3eaea1797fc84629e25e3eecf85

  • SHA512

    74f9184fe51928449d20c9d1a2e3449d77026a912c03d3d938b1668c2623ba42ab544e9dfcf9f24e6f550ce4b469a878dc95a19827976f49b942e5a8ef233a7d

  • SSDEEP

    3072:DC9HusLq1olGEqfRZ1/64AevhSW0VU31yUO5JFWy4poHgJZQ8v:DC9HusLqilG7Z1th+VMoUO5LWy4lZQK

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.36

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      0767f22f02713717a92c61c8f844cbe0N.exe

    • Size

      185KB

    • MD5

      0767f22f02713717a92c61c8f844cbe0

    • SHA1

      e6638791005c7719790674f59620f126a61d7495

    • SHA256

      047544bd45d8fcf796798c7a8d9658d6b3c6a3eaea1797fc84629e25e3eecf85

    • SHA512

      74f9184fe51928449d20c9d1a2e3449d77026a912c03d3d938b1668c2623ba42ab544e9dfcf9f24e6f550ce4b469a878dc95a19827976f49b942e5a8ef233a7d

    • SSDEEP

      3072:DC9HusLq1olGEqfRZ1/64AevhSW0VU31yUO5JFWy4poHgJZQ8v:DC9HusLqilG7Z1th+VMoUO5LWy4lZQK

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks