← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
ACTIVIDAD MALICIOSA | Relacionada con StrelaStealer 04-11-2024
WHITE esoporteingenieria2020 2024-11-06 Modified: 2024-11-06
62
IOCs
HIGH VOLUME
StrelaStealer es un programa malicioso diseñado para robar las credenciales de inicio de sesión de cuentas de correo electrónico. Fue identificado por primera vez en noviembre de 2022 por los investigadores de DCSO CyTec. Este malware se dirige principalmente a los clientes de correo electrónico Microsoft Outlook y Mozilla Thunderbird, y se distribuye a través de correos electrónicos de spam dirigidos a usuarios hispanohablantes. Una vez que infecta un sistema, StrelaStealer busca y extrae datos confidenciales, como nombres de usuario y contraseñas, almacenados en archivos y registros específicos. La importancia de StrelaStealer radica en su capacidad para comprometer cuentas de correo electrónico, lo que puede llevar a robo de identidad, pérdidas financieras y acceso no autorizado a otros servicios conectados a través de los correos electrónicos. Para protegerse, se recomienda utilizar un software antivirus actualizado y ser cauteloso con los correos electrónicos sospechosos.
accessta0001 initialta0005 defenset1005 datalocal systemt1012 queryregistryfilesover c2channel
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Strela Stealer
Indicators of Compromise (62)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 05059eea810a889828f6573b6fd46e58 2024-11-06
FileHash-MD5 0c10b1285b4fee52aeb320ad20597a9f 2024-11-06
FileHash-MD5 287592070a95d99810322b0efe254774 2024-11-06
FileHash-MD5 370a298ece999bc6f9622241ccfc79e4 2024-11-06
FileHash-MD5 3b9b1062431310c06d9fd0e9d18cda8d 2024-11-06
FileHash-MD5 506139403fecd2d951fb8feee95042ca 2024-11-06
FileHash-MD5 5b61548ffb6f4bd57bc1810908420bcb 2024-11-06
FileHash-MD5 7860ba649127767166643fb252944fbf 2024-11-06
FileHash-MD5 81afb42d6c27c69289c365e8857d0c1e 2024-11-06
FileHash-MD5 87bc639d9082afa5ea14ebae0d8d4a12 2024-11-06
FileHash-MD5 89740baf37b7fd58653a6c3fb85ba1a7 2024-11-06
FileHash-MD5 8de2eed1d885fb9026cb64994e0e1b3a 2024-11-06
FileHash-MD5 90afc449d4a29c7b018c840ef7ddfca5 2024-11-06
FileHash-MD5 a71d7d808316257833c717a0e146fcfb 2024-11-06
FileHash-MD5 c0422b83abd61e0035dbc6e81a3b463b 2024-11-06
FileHash-MD5 c51fcedf8130a2afd2501d523121d827 2024-11-06
FileHash-MD5 ccec406b9063de8bf2ee3d04838563d4 2024-11-06
FileHash-MD5 dae6de693f924b1d4d04695abf8e9b5d 2024-11-06
FileHash-MD5 f415e1036ab7ad1184aa30a868fafb50 2024-11-06
FileHash-SHA1 0fe9f9ce4c90bb2d893a3cb29d33acefd90b2cb0 2024-11-06
FileHash-SHA1 1eda56cb1d22c1f2c0fdb3d98eeccae7c055b0f0 2024-11-06
FileHash-SHA1 34f8c8c0ef6033c89f8e0fc41652cc71a61b678c 2024-11-06
FileHash-SHA1 4894ad8df6d545455fd77ff1868d3fb010e0e869 2024-11-06
FileHash-SHA1 55cab249fd05e7041a0caa24caa0e70950d63a93 2024-11-06
FileHash-SHA1 6c6699f15473d7f1523943d1dff98a1547c74755 2024-11-06
FileHash-SHA1 7cc52e099933de127658f4083ec3d8dc15ff001f 2024-11-06
FileHash-SHA1 82f74d93745abeaf5e0669b54e1234e9dcb8b19c 2024-11-06
FileHash-SHA1 ac5768ab229036505d4fb345d4bff0a748e88447 2024-11-06
FileHash-SHA1 b92b19f91a4e5ab354e91fe36f1c6fe6ef4a8ce8 2024-11-06
FileHash-SHA1 c6a315aaa6871a0d5856cc033323c637c1e40844 2024-11-06
FileHash-SHA1 cf0dbadfaf2529ab2f2d2f66cd9565f6fcefd30e 2024-11-06
FileHash-SHA1 d09e8f6338ce9329078955ea6b931bfed0f7efcb 2024-11-06
FileHash-SHA1 dce95146073ad74334c5f767ca90ae32f60180ea 2024-11-06
FileHash-SHA1 e0565ee09cdcbd911c777ca49ff33a467bad79f4 2024-11-06
FileHash-SHA1 e886db1171cd82e4412179414d1eb2ec2cbf8fa0 2024-11-06
FileHash-SHA1 f52a1327e4811f4df24aeb6e263de72d62c13e0e 2024-11-06
FileHash-SHA1 f5ca06cb6a9c30e65c1bed24aea7f7280e1ce7c7 2024-11-06
FileHash-SHA1 fcaf87a762c1d52d52b16821bc06cee0076c31b5 2024-11-06
FileHash-SHA256 0f2a1709c76bc4de9e0c41e7eff8a9033563cb8803afa88157174c772ffa0fa9 2024-11-06
FileHash-SHA256 1abd2976288646b8bbb1a08976191a51aa8e46954bf2e6bcfda02e0db07d3c46 2024-11-06
FileHash-SHA256 2af2e2e694277245ed558625fdb66d512c551f410ec514b298ca8f1f0f11e725 2024-11-06
FileHash-SHA256 2b785d8d90741da2e08b47482dbcf0fc97eb370629ef02bab3fae9ae6b16cd29 2024-11-06
FileHash-SHA256 33076b2d08c2f4c60613c445198149b9299584b871daaed9d4955e584078e8b4 2024-11-06
FileHash-SHA256 43df12d4088fadc66cdda1d68e3460a2c85cb0579161182f28e1ab627866851d 2024-11-06
FileHash-SHA256 51d8d746a03b992a52e7cda26b60315195cc99a7d4527b4d1f904633763a48c1 2024-11-06
FileHash-SHA256 5743e0fe09c74f7e560b078e85bd85f99c4ed1874576ca3237fb5e68363ba51d 2024-11-06
FileHash-SHA256 6ba36d314cd386365dee1b655ee1fc3da1da579fd1187155ad7a763cb74174dc 2024-11-06
FileHash-SHA256 6c6e9faa553fb6f2a4ba919c647c4f838afd1516ddb66ae05beedea4234207c2 2024-11-06
FileHash-SHA256 73184ae9ef21e436e181c5c80b9d6766c272d3cf6f6ffc9e30b1b7e025e2b8ac 2024-11-06
FileHash-SHA256 9a47458c8a24a23c23f98f1eb2a803e4f76af01416abeef174216a1172e698ca 2024-11-06
FileHash-SHA256 a2afa8f6d5332fac017eaf74433f773eaff949400cc6da0eaa7cfcbd9710350b 2024-11-06
FileHash-SHA256 a5a3a2bcc39bee5d6d8d8a18fa376330330ffaf6540f87bfa9facbe9d2ccdc4c 2024-11-06
FileHash-SHA256 b6f975a0d8e3b8aed988aed8e9bffe80a267f735670cbaa6002e693677734532 2024-11-06
FileHash-SHA256 bd3d80ad2f5eb7970df87f7f4db44f4cd1bd990e97f5677b29e4609daaf5ce7c 2024-11-06
FileHash-SHA256 c1300da81e37d2ec5fe1b1fdea0014f6d2c7d2262dc9056a55922cb13f5070d4 2024-11-06
FileHash-SHA256 eca1698611d0301a4caa4217e3e37781aa1554efc4acd2eee6c9c81660f0468f 2024-11-06
FileHash-SHA256 f1fce4a9c5aa10387a7ec80ac3d60068bea4c97d0ec54079effb5a0b4b5fbd13 2024-11-06
domain apitestlabs.com 2024-11-06
domain cloudslimit.com 2024-11-06
domain dailywebstats.com 2024-11-06
domain endpointexperiment.com 2024-11-06
domain vaultdocker.com 2024-11-06
References (3)
↗ https://darfe.es/ciberwiki/index.php?title=StrelaStealer ↗ https://www.virustotal.com/graph/embed/gbfc5ee98efbe46a08b751f0c1a7002163ad889524d574978ac55e2732b07094b?theme=light ↗ https://www.virustotal.com/gui/collection/b52c94c8a7d2b6ce74a9e7161a9254b34fe686fc69033fc7af6172cef94c629a