General

  • Target

    08894b9bdea7f720de0a9455302e325e

  • Size

    105KB

  • MD5

    08894b9bdea7f720de0a9455302e325e

  • SHA1

    6b6dcc27736b790aefd11f85ab01618778bf9236

  • SHA256

    2b38a65424d8b9f30e2206125b2d0baca959c42000d8e701627f007ece9ade3c

  • SHA512

    50930c96cd43f7bda35b57d752a8c6e9843d53baa7cc485b88f6f4b94bafb688a10e32bfd0ac1e37ae32b927302fb15b7a511226af0beb7c4278d6e81c867734

  • SSDEEP

    3072:QgIITcDXy1FZm/EkRlpo95EBs6XRjgauj:Qhe1F9H9Ms6XRjHuj

Score
10/10

Malware Config

Extracted

Family

strrat

C2

severdops.ddns.net:2201

Attributes
  • license_id

    P2AP-K06V-U430-8310-7K76

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Signatures

Files

  • 08894b9bdea7f720de0a9455302e325e
    .jar