General

  • Target

    b0eedb5b27553c17e457fb0b7af82823f474caa9a35e40999bec070839e6e50a

  • Size

    247KB

  • Sample

    241018-kn9x6szgkn

  • MD5

    80b2e227c6906196a97cd549f32b42be

  • SHA1

    af2affe8b5c84e32dec445f86083b39aa38ecd40

  • SHA256

    b0eedb5b27553c17e457fb0b7af82823f474caa9a35e40999bec070839e6e50a

  • SHA512

    8b7052b3c86ceb0a9ee82127637ceae70743ca36e24f7a0f03abbf9177a8646608720b0b2c777bdfe2c20a9666d2fed3f3318e7b495b356afffa01d2be1c4c9e

  • SSDEEP

    6144:GGueExxfZJ+vXwQXkpC+5pBwOXSozfMIwe/H6Vc8:hUfZJ+vBkgCJSozfh6VZ

Score
10/10

Malware Config

Extracted

Family

strela

C2

94.159.113.48

Attributes
  • url_path

    /server.php

Targets

    • Target

      b0eedb5b27553c17e457fb0b7af82823f474caa9a35e40999bec070839e6e50a

    • Size

      247KB

    • MD5

      80b2e227c6906196a97cd549f32b42be

    • SHA1

      af2affe8b5c84e32dec445f86083b39aa38ecd40

    • SHA256

      b0eedb5b27553c17e457fb0b7af82823f474caa9a35e40999bec070839e6e50a

    • SHA512

      8b7052b3c86ceb0a9ee82127637ceae70743ca36e24f7a0f03abbf9177a8646608720b0b2c777bdfe2c20a9666d2fed3f3318e7b495b356afffa01d2be1c4c9e

    • SSDEEP

      6144:GGueExxfZJ+vXwQXkpC+5pBwOXSozfMIwe/H6Vc8:hUfZJ+vBkgCJSozfh6VZ

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks