General

  • Target

    amazon.jar

  • Size

    217KB

  • Sample

    231122-qpyt7add5v

  • MD5

    580a1eb58a25e919fd6ada88b3ae939a

  • SHA1

    77e82293e17359ddafe9d6590e3e01eebbf2cbc2

  • SHA256

    1f9a4eb72e20eb5aa2d52d3c3280f50851d2af2f3b19295a57aed8bec5ec1185

  • SHA512

    21d550f5ad8fba14fd145c21d7bd84e21609c8218f288ea63af54c062c3c7d0dc76bb7c128be2985e108c3ce70f274911be354544172c15bf2502a925f2cb512

  • SSDEEP

    6144:Nig9TLwsrdn+Szf+6s1Am9a1LQl4YUEs7L3s9F:UePwsPy6sA9bYQrGF

Score
10/10

Malware Config

Extracted

Family

strrat

C2

94.156.144.39:8070

127.0.0.1:8070

Attributes
  • license_id

    EAF4-YLN4-SI61-3B46-LP7Q

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Targets

    • Target

      amazon.jar

    • Size

      217KB

    • MD5

      580a1eb58a25e919fd6ada88b3ae939a

    • SHA1

      77e82293e17359ddafe9d6590e3e01eebbf2cbc2

    • SHA256

      1f9a4eb72e20eb5aa2d52d3c3280f50851d2af2f3b19295a57aed8bec5ec1185

    • SHA512

      21d550f5ad8fba14fd145c21d7bd84e21609c8218f288ea63af54c062c3c7d0dc76bb7c128be2985e108c3ce70f274911be354544172c15bf2502a925f2cb512

    • SSDEEP

      6144:Nig9TLwsrdn+Szf+6s1Am9a1LQl4YUEs7L3s9F:UePwsPy6sA9bYQrGF

    Score
    7/10

MITRE ATT&CK Enterprise v15

Tasks