Overview

overview

10

Static

static

3

5ba2473994...62.dll

windows7-x64

10

5ba2473994...62.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ba247399435ef6c5e4ba617900390e1ce31e360fb36e33e28ef57239716e262.bin

  • Size

    158KB

  • Sample

    240725-qhs1cstdjb

  • MD5

    a68882a2d6b8d9e2fda8f21f9b21421e

  • SHA1

    0f945cce84327def9a47be63ef04b07e3c8cb905

  • SHA256

    5ba247399435ef6c5e4ba617900390e1ce31e360fb36e33e28ef57239716e262

  • SHA512

    b25bc79e0dd9905105d4bf1a97f3d12eda8f3d25869b5db8653eea9b9f6898e602d40f2681f0be0a654e89e545843722246403c22f49964ca513639590de2494

  • SSDEEP

    3072:9vfgXxWmUpaKRF1UAIvhLr5lKKs1o6vDWYOTIHuWFATz:9v853e1FsLn0va38HuZ

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.36

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      5ba247399435ef6c5e4ba617900390e1ce31e360fb36e33e28ef57239716e262.bin

    • Size

      158KB

    • MD5

      a68882a2d6b8d9e2fda8f21f9b21421e

    • SHA1

      0f945cce84327def9a47be63ef04b07e3c8cb905

    • SHA256

      5ba247399435ef6c5e4ba617900390e1ce31e360fb36e33e28ef57239716e262

    • SHA512

      b25bc79e0dd9905105d4bf1a97f3d12eda8f3d25869b5db8653eea9b9f6898e602d40f2681f0be0a654e89e545843722246403c22f49964ca513639590de2494

    • SSDEEP

      3072:9vfgXxWmUpaKRF1UAIvhLr5lKKs1o6vDWYOTIHuWFATz:9v853e1FsLn0va38HuZ

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks