General
-
Target
SalykFormJavaRU.jar
-
Size
219KB
-
MD5
14c6e272eb3038aa41a57f5c81fd9fb3
-
SHA1
31ed947d4295f8ffdad8a1af78d08fb431919fc4
-
SHA256
ee113a592431014f44547b144934a470a1f7ab4abec70ba1052a4feb3d15d5c6
-
SHA512
651f36f008fb0be1117fb9cd81ce184e97032445c1fda759edb80837ece1a73c3872b5ab11db7f2fda8f8eb94b461678d8e3e2b7d771e8a30257f9565ed081e5
-
SSDEEP
3072:puOsIqeGoQp3ep/Ae/me0CRXfAG3n1DiONTQZr0r78G+2/dpM/r1SioJuU2hTaXd:cURGoieee0CSyn1dNEyrk2LM/r1joI4t
Score
10/10
Malware Config
Extracted
Family
strrat
C2
https://pastebin.com/raw/8umPhg86:13771
https://pastebin.com/raw/67b8GSUQ:13672
Attributes
-
license_id
AP9X-81G0-30TN-HSIO-6SFI
-
plugins_url
http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5
-
scheduled_task
true
-
secondary_startup
true
-
startup
true
Signatures
-
Strrat family
Files
-
SalykFormJavaRU.jar