General
-
Target
SB COPY6827366180.PDF.zip
-
Size
38KB
-
MD5
2703a1562a0429136e1653f57954a2e2
-
SHA1
3626243135b9addd8076b0c211cb54fbf98cc1de
-
SHA256
de1522a546abbff8b5cdde813b89e754ab0da6894e25bba0243a7a79e26a99d5
-
SHA512
11321ec43f6858f9ce32daf9f79de7a87bb951f3205b9ef801af34edb8d6585565d4c9e791c7cfa59d6b4cc1d05589414885249931d59843229506fdaaf75e2a
-
SSDEEP
768:CyaR6TKFrRIMe+3vA5xCZXr34G3GRGHQBkmHXjVpu98qYS33+AzkS06:ooYIMj34XCBEGWqMjfu9g4ks
Score
10/10
Malware Config
Extracted
Family
strrat
C2
2024logs.freetcp.com:8082
Attributes
-
license_id
RKA0-KES0-EPPK-UDRO-JNCG
-
plugins_url
http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5
-
scheduled_task
true
-
secondary_startup
true
-
startup
true
Signatures
-
Strrat family
Files
-
SB COPY6827366180.PDF.zip
-
SB COPY6827366180.PDF.jar