General

  • Target

    02_extracted.jar

  • Size

    83KB

  • Sample

    201104-sw3mtjzhb2

  • MD5

    9250c46915d7fc36a5605a3756447dec

  • SHA1

    b33288cc02bf24008488b14e648943a214265067

  • SHA256

    43e480eaff9c6da18d3c042231ed82f0a09a7adb3301311c159941e75a105a2c

  • SHA512

    093e64939119d1d742428379ec05460a00c6b4d96c4e8fcb425bcd752cacfd18a394fe7d04671fd9f131beb89a41e9e0517d1238430820e5347e271a1090dc05

Malware Config

Targets

    • Target

      02_extracted.jar

    • Size

      83KB

    • MD5

      9250c46915d7fc36a5605a3756447dec

    • SHA1

      b33288cc02bf24008488b14e648943a214265067

    • SHA256

      43e480eaff9c6da18d3c042231ed82f0a09a7adb3301311c159941e75a105a2c

    • SHA512

      093e64939119d1d742428379ec05460a00c6b4d96c4e8fcb425bcd752cacfd18a394fe7d04671fd9f131beb89a41e9e0517d1238430820e5347e271a1090dc05

    • STRRAT

      STRRAT is a remote access tool than can steal credentials and log keystrokes.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.