General

  • Target

    52286302812f2cffd5859e15190d247175dcb692b08f3e94a2a6bb513104d150N.exe

  • Size

    182KB

  • Sample

    241128-smn83sxjdp

  • MD5

    dd7ea3a8bade86f107ab3f0dac9b6f50

  • SHA1

    0b35155634e97547b42cc7513a7c2a56d90644e9

  • SHA256

    52286302812f2cffd5859e15190d247175dcb692b08f3e94a2a6bb513104d150

  • SHA512

    8a78d8f515b693775fd354000786a381db8ce73bd451263b254151fab9639e843f0dbcacabbb98a865c1b87bf55f79a29c5a7d6cd06912a9fee5dac1755147ff

  • SSDEEP

    3072:1a3gN0KjMqOdLdrjeiltOAWSBlF+2kr4Nv4ILEH0T8QfywWWEISDK:M3gNFw3L1j77pBrK4lLnTfK

Score
10/10

Malware Config

Extracted

Family

strela

C2

94.159.113.79

Attributes
  • url_path

    /up.php

Targets

    • Target

      52286302812f2cffd5859e15190d247175dcb692b08f3e94a2a6bb513104d150N.exe

    • Size

      182KB

    • MD5

      dd7ea3a8bade86f107ab3f0dac9b6f50

    • SHA1

      0b35155634e97547b42cc7513a7c2a56d90644e9

    • SHA256

      52286302812f2cffd5859e15190d247175dcb692b08f3e94a2a6bb513104d150

    • SHA512

      8a78d8f515b693775fd354000786a381db8ce73bd451263b254151fab9639e843f0dbcacabbb98a865c1b87bf55f79a29c5a7d6cd06912a9fee5dac1755147ff

    • SSDEEP

      3072:1a3gN0KjMqOdLdrjeiltOAWSBlF+2kr4Nv4ILEH0T8QfywWWEISDK:M3gNFw3L1j77pBrK4lLnTfK

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela family

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks