General
-
Target
2911202301.jar
-
Size
125KB
-
Sample
231129-lybnssfe4y
-
MD5
61821f7547b53052a6691102d30edb39
-
SHA1
29fb5b476a7212892d8546715e6d706b89f4ca07
-
SHA256
461b50051439aafded874b3c252e2d2ca78b3ff4f27413e39ceca3f2d070d6cd
-
SHA512
e4d236e5713017f56cfd6746599479cee9d747b1e8a78dc8cee627d32e330197e641787df93f1221ddb52b4749a42dd9a744f1cf533a79e752ce6f4bda6e4483
-
SSDEEP
3072:l/BUDrxslF1DI2uEWIjrVrL1seAfLrNNB4:2xslFSJNInN1PL
Behavioral task
behavioral1
Sample
2911202301.jar
Resource
win7-20231025-en
Behavioral task
behavioral2
Sample
2911202301.jar
Resource
win10v2004-20231127-en
Malware Config
Extracted
strrat
lestencrypt.dnset.com:7888
lestencrypt.dnset.com:1780
-
license_id
M5NG-QCTM-00LM-3XXT-3I3E
-
plugins_url
http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5
-
scheduled_task
true
-
secondary_startup
true
-
startup
true
Targets
-
-
Target
2911202301.jar
-
Size
125KB
-
MD5
61821f7547b53052a6691102d30edb39
-
SHA1
29fb5b476a7212892d8546715e6d706b89f4ca07
-
SHA256
461b50051439aafded874b3c252e2d2ca78b3ff4f27413e39ceca3f2d070d6cd
-
SHA512
e4d236e5713017f56cfd6746599479cee9d747b1e8a78dc8cee627d32e330197e641787df93f1221ddb52b4749a42dd9a744f1cf533a79e752ce6f4bda6e4483
-
SSDEEP
3072:l/BUDrxslF1DI2uEWIjrVrL1seAfLrNNB4:2xslFSJNInN1PL
Score7/10-
Modifies file permissions
-