Overview

overview

10

Static

static

10

00000000-0...ok.jar

windows7-x64

1

00000000-0...ok.jar

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    00000000-0dd4-dd1c-d869-prilojenie.docx-perechen-oshibok.jar_

  • Size

    219KB

  • Sample

    231217-2lahzahfc4

  • MD5

    23bc3e914bb9ce009456f1b0ccd77141

  • SHA1

    f20a277435c467e33dd347db08d65b49b1fcaf8c

  • SHA256

    2d617b239d4e0d3c864b38cbc4e70f46075e2bb31cb1b64fbf07ede8e893d7a8

  • SHA512

    d47866ec31e76cb264bc253e51ab345d378b77d11f6f6c00f75809f56d4103ae1bd910d41a5f25587cee7f48ef5bc130cab8ac2109d52549df1e1c107b98a6a4

  • SSDEEP

    6144:G2W3F1vMJbWYiaYGJ1MTKr+t3Fa55KW6v5AV:GZ3fEsYiXFTK63YJ6vmV

Score
10/10
strratdiscovery

Malware Config

Extracted

Family

strrat

C2

https://pastebin.com/raw/dFKy3ZDm:13570

https://pastebin.com/raw/dLzt4tRB:13569
Attributes
  • license_id

    W9MZ-7P83-CP8C-A4XM-IP0L

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Targets

    • Target

      00000000-0dd4-dd1c-d869-prilojenie.docx-perechen-oshibok.jar_

    • Size

      219KB

    • MD5

      23bc3e914bb9ce009456f1b0ccd77141

    • SHA1

      f20a277435c467e33dd347db08d65b49b1fcaf8c

    • SHA256

      2d617b239d4e0d3c864b38cbc4e70f46075e2bb31cb1b64fbf07ede8e893d7a8

    • SHA512

      d47866ec31e76cb264bc253e51ab345d378b77d11f6f6c00f75809f56d4103ae1bd910d41a5f25587cee7f48ef5bc130cab8ac2109d52549df1e1c107b98a6a4

    • SSDEEP

      6144:G2W3F1vMJbWYiaYGJ1MTKr+t3Fa55KW6v5AV:GZ3fEsYiXFTK63YJ6vmV

    Score
    7/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks