General

  • Target

    SOLICITUD PEDID0 MATERIAL_.jar

  • Size

    218KB

  • Sample

    230616-lbbqaaeb94

  • MD5

    92e2cdc3573358b1c094fdc18a4e96d3

  • SHA1

    545c6030a749408b70879a1dc666a26004abaeff

  • SHA256

    a08c27a08f892a86b05cf016579eb2e0fa15325680c6cc0138cffc5c5800eee2

  • SHA512

    362b66dcdfd51a965fb144464996d374f214dd38863ab0642c752bf8eb3c37f030f5a5921608ac7809eb379f96cae31f5e2004000a38ae73446206a2fbf52989

  • SSDEEP

    6144:2Bj/URSLm8ybCSBY8GG32aLcS6ig6YTOvhPS2:2B/LmF20YJG32aAScSvl

Malware Config

Targets

    • Target

      SOLICITUD PEDID0 MATERIAL_.jar

    • Size

      218KB

    • MD5

      92e2cdc3573358b1c094fdc18a4e96d3

    • SHA1

      545c6030a749408b70879a1dc666a26004abaeff

    • SHA256

      a08c27a08f892a86b05cf016579eb2e0fa15325680c6cc0138cffc5c5800eee2

    • SHA512

      362b66dcdfd51a965fb144464996d374f214dd38863ab0642c752bf8eb3c37f030f5a5921608ac7809eb379f96cae31f5e2004000a38ae73446206a2fbf52989

    • SSDEEP

      6144:2Bj/URSLm8ybCSBY8GG32aLcS6ig6YTOvhPS2:2B/LmF20YJG32aAScSvl

    • STRRAT

      STRRAT is a remote access tool than can steal credentials and log keystrokes.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks