General

  • Target

    1c03b6a92104b8470699e6f8b5932019

  • Size

    105KB

  • MD5

    1c03b6a92104b8470699e6f8b5932019

  • SHA1

    e6b66d0be97e6f60019bf4fa0d7cb012a938c41e

  • SHA256

    32cec6e8d51b2c779f4cbf7204b267216f1e53e7a566bca23ed7428fff78352e

  • SHA512

    f7f8507479b8d4e68c9e66f7549aacae80fcb9b46319523cd5813d52f78f507be68c67623262679c811015dc872271938b4c72384046d6f90bae4b61b644130c

  • SSDEEP

    3072:QgIITcDXy1FZm/EkRlpo95EBs6XRjgauA:Qhe1F9H9Ms6XRjHuA

Score
10/10

Malware Config

Extracted

Family

strrat

C2

severdops.ddns.net:2201

Attributes
  • license_id

    P2AP-K06V-U430-8310-7K76

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Signatures

Files

  • 1c03b6a92104b8470699e6f8b5932019
    .jar