General

  • Target

    48af70db140523739825818f7972f210N.exe

  • Size

    179KB

  • Sample

    240726-x9cwsazelp

  • MD5

    48af70db140523739825818f7972f210

  • SHA1

    1325f891fc76d501458bfcf1e3a85db5f6545626

  • SHA256

    96af28f0d18393bd141978b64b6d4f08be4638fac963c7fb06912ee4ed29efdb

  • SHA512

    d53e4a631a060d1fe9ad8bbd6992ece8d5dc509d47ac54b76e6d230240b9bcf10571b577db7bad66d406b4c19f4362bf4d8ea7d8e3f63f3e4692282d4a278635

  • SSDEEP

    3072:4dQ6cSLi9sjewv8hMOyXDFU7EhRcyb96xMaNwg9+AEKdxtcgQxYh:x61Li9E8aDYEh9bsjmgIAEK9FZ

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.36

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      48af70db140523739825818f7972f210N.exe

    • Size

      179KB

    • MD5

      48af70db140523739825818f7972f210

    • SHA1

      1325f891fc76d501458bfcf1e3a85db5f6545626

    • SHA256

      96af28f0d18393bd141978b64b6d4f08be4638fac963c7fb06912ee4ed29efdb

    • SHA512

      d53e4a631a060d1fe9ad8bbd6992ece8d5dc509d47ac54b76e6d230240b9bcf10571b577db7bad66d406b4c19f4362bf4d8ea7d8e3f63f3e4692282d4a278635

    • SSDEEP

      3072:4dQ6cSLi9sjewv8hMOyXDFU7EhRcyb96xMaNwg9+AEKdxtcgQxYh:x61Li9E8aDYEh9bsjmgIAEK9FZ

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks