General

  • Target

    PO2888294Pdf.jar

  • Size

    219KB

  • Sample

    230927-jsn1tshb2v

  • MD5

    f7d793ef8a6e83b49801135dcdeb063a

  • SHA1

    66f806a6f00264eb6c31d1946326b9619680c1e0

  • SHA256

    575ad544fc34dc750f07593c8b2011e75617fadf569b99c21b4bcbdb1da4b337

  • SHA512

    1552efff247fcb3096b887a985ac30d013618ed827fd5e8a4184d5531638554804ab9c9d0d7ab560290fe7ba745938d6c167f555b444229ca30349a1bfd3118e

  • SSDEEP

    3072:+tC4jZpHQYtal60wCoVw/YvrA+ZbiDNyg2M06uc70gQi/RG2QWKuB9Xmabl:NQpHQYtv0RKw+A+Z6gpYNtKu7XL

Score
10/10

Malware Config

Extracted

Family

strrat

C2

oluwashowmercy.hopto.org:7888

127.0.0.1:7888

Attributes
  • license_id

    0V8J-34N3-VW97-SB5T-WHHZ

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    false

  • secondary_startup

    false

  • startup

    true

Targets

    • Target

      PO2888294Pdf.jar

    • Size

      219KB

    • MD5

      f7d793ef8a6e83b49801135dcdeb063a

    • SHA1

      66f806a6f00264eb6c31d1946326b9619680c1e0

    • SHA256

      575ad544fc34dc750f07593c8b2011e75617fadf569b99c21b4bcbdb1da4b337

    • SHA512

      1552efff247fcb3096b887a985ac30d013618ed827fd5e8a4184d5531638554804ab9c9d0d7ab560290fe7ba745938d6c167f555b444229ca30349a1bfd3118e

    • SSDEEP

      3072:+tC4jZpHQYtal60wCoVw/YvrA+ZbiDNyg2M06uc70gQi/RG2QWKuB9Xmabl:NQpHQYtv0RKw+A+Z6gpYNtKu7XL

    Score
    4/10

MITRE ATT&CK Matrix

Tasks