General
-
Target
2220-0-0x0000000001D00000-0x0000000001D23000-memory.dmp
-
Size
140KB
-
MD5
55b0a9d86f0cd849799e2f4a9e210468
-
SHA1
f9755dacff8c65e0166c99cfdf80686239de9b8e
-
SHA256
421442515a08250399cb7c400a209766d5668c02a586e0b837c802f58c59c0b4
-
SHA512
588f8ab9a3ab2ce0acae9b777782323d661e059419b8d493a09114e7bd0d6404274d30362aaf38bd39e876ede99f0f8b35ac7a3f46ea4e410ecbbe53d79b907e
-
SSDEEP
3072:vuJn7im/wK3eK0Rwq8T7NkYuGRzXsdqeMqnjyt:Q2m/wK3eK0KT7N9u1jM
Score
10/10
Malware Config
Extracted
Family
strela
C2
94.159.113.79
Attributes
-
url_path
/up.php
Signatures
-
Detects Strela Stealer payload 1 IoCs
Processes:
resource yara_rule sample family_strela -
Strela family
Files
-
2220-0-0x0000000001D00000-0x0000000001D23000-memory.dmp