General

  • Target

    19102023_2336_18102023_Delivery information GCBAC71854.jar

  • Size

    219KB

  • MD5

    57c583846083e93f56990a97b39cffd8

  • SHA1

    f34af3fc57a8f0cdc7b0692de369b45d12711918

  • SHA256

    20f218010b4a83ad4af68bfe387b4275a86eef84354e279bde5b11c07b7433a7

  • SHA512

    63662cc3fadc40a15ef57f70e7ca579a6bc11dd7fce6afeefbfd1613ce93edd2198d16f23c8ee65a7a6d786da70c0669e03b6edb8785bc25e3b18bc4ba7abc16

  • SSDEEP

    3072:0NGIpzASCIWcBzO3hU/17b2IiT2NHkdHiYcj+uCO+cK41A4EJZGWxSFIp/oOC7+A:zIRBwG/bCYTR1A4CZTSKBCuKbb

Score
10/10

Malware Config

Extracted

Family

strrat

C2

194.15.112.53:6247

payment.gleeze.com:6247

Attributes
  • license_id

    XRX6-YEF1-8ZTR-PBLU-HS8O

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Signatures

Files

  • 19102023_2336_18102023_Delivery information GCBAC71854.jar
    .jar