General

  • Target

    SwiftBarclaysSS-24Orderequipmentsexportexwork.jar

  • Size

    218KB

  • Sample

    231010-yn88jage6x

  • MD5

    312871494d238eca69fa76b287737772

  • SHA1

    44b24c44d0249351ecef829b8a0824ed673f23be

  • SHA256

    53f780bac1bebfe9e1c319e4094cba3a9f4e443dbedb526f7c982d1bf9bedc6a

  • SHA512

    5d2abd39c0df87e8a3460eb74dd15973da4f5d3a12925e9afb87b58a2f3ee576910edee61287316d370a2c3b42032bad365fd946dc4948bb67ca5ec413197e95

  • SSDEEP

    6144:7xvTBx2XDeMr+uJv1XHVMyyGUyOsR3V9Bb:7pTWXD7JJdX1Myy0OSV9Bb

Score
10/10

Malware Config

Extracted

Family

strrat

C2

dogface.casacam.com:6605

dogface55.duckdns.org:6604

Attributes
  • license_id

    PZ7N-MEGA-746I-6O5N-OHCF

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    false

  • secondary_startup

    true

  • startup

    true

Targets

    • Target

      SwiftBarclaysSS-24Orderequipmentsexportexwork.jar

    • Size

      218KB

    • MD5

      312871494d238eca69fa76b287737772

    • SHA1

      44b24c44d0249351ecef829b8a0824ed673f23be

    • SHA256

      53f780bac1bebfe9e1c319e4094cba3a9f4e443dbedb526f7c982d1bf9bedc6a

    • SHA512

      5d2abd39c0df87e8a3460eb74dd15973da4f5d3a12925e9afb87b58a2f3ee576910edee61287316d370a2c3b42032bad365fd946dc4948bb67ca5ec413197e95

    • SSDEEP

      6144:7xvTBx2XDeMr+uJv1XHVMyyGUyOsR3V9Bb:7pTWXD7JJdX1Myy0OSV9Bb

    Score
    4/10

MITRE ATT&CK Matrix

Tasks