Overview

overview

10

Static

static

3

d1035b1292...99.dll

windows7-x64

10

d1035b1292...99.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d1035b1292e69800a7fc1772c57ec91c8cd2daeea1b00b8bb210cfed90b29299

  • Size

    552KB

  • Sample

    241109-eh934axbqf

  • MD5

    fdc667fa306b86374412d4bccaa3e36c

  • SHA1

    1af9ff4d9ae002ff41659761445480d974dfad11

  • SHA256

    d1035b1292e69800a7fc1772c57ec91c8cd2daeea1b00b8bb210cfed90b29299

  • SHA512

    53350dc24e2c09f81b629f9c6ef4aa78c9972cf2522c417bb9d2f7e36eaaddacc3cc787f16433ba61fee809b2b04881a28972468d70ce7b09f2662bc29e04a9a

  • SSDEEP

    12288:jTK7ANgeRGT1Fe+eh+UotJf/NvsN908ycQZBNWki:XKkVGilotsNHyHBNJi

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

94.159.113.86

Attributes
  • url_path

    /server.php

Targets

    • Target

      d1035b1292e69800a7fc1772c57ec91c8cd2daeea1b00b8bb210cfed90b29299

    • Size

      552KB

    • MD5

      fdc667fa306b86374412d4bccaa3e36c

    • SHA1

      1af9ff4d9ae002ff41659761445480d974dfad11

    • SHA256

      d1035b1292e69800a7fc1772c57ec91c8cd2daeea1b00b8bb210cfed90b29299

    • SHA512

      53350dc24e2c09f81b629f9c6ef4aa78c9972cf2522c417bb9d2f7e36eaaddacc3cc787f16433ba61fee809b2b04881a28972468d70ce7b09f2662bc29e04a9a

    • SSDEEP

      12288:jTK7ANgeRGT1Fe+eh+UotJf/NvsN908ycQZBNWki:XKkVGilotsNHyHBNJi

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela family

      strela

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks