Overview

overview

10

Static

static

10

cd95317ffc...cb.jar

windows7-x64

1

cd95317ffc...cb.jar

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f1f27ded1ea733d6be70e13bb1ecd60.bin

  • Size

    202KB

  • MD5

    278052b39c7ecd68d49d3d7389237766

  • SHA1

    24b3d02cbb7c859397094f046da521a7e1800680

  • SHA256

    fd1f2d7ef1b439e6ade27864ba09044b2174781f939bde0afb5ad15b0e51a4ee

  • SHA512

    db11127ab40a6e4e1ec4b51b314ac4f50e13d0dbb02b8116b0c7f76f2776d1f20e7a75263b993086047b84c86187ad42dc18fdb1076d21c2b1f76d3356b8d73a

  • SSDEEP

    6144:0VodDWWMByHkxED7bac1VKr4Gnn3LQMP/:0rtjcXK0iJP/

Score
10/10
strrat

Malware Config

Extracted

Family

strrat

C2

popintertradeer.ddns.net:7888

142.147.97.149:7888
Attributes
  • license_id

    GLW8-JSOY-7FVW-SQ76-CUY0

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Signatures

Files

  • 1f1f27ded1ea733d6be70e13bb1ecd60.bin
    .zip

    Password: infected

  • cd95317ffcd0cf91eb2ce9fa6a0d062a9a1dab9fd278654b85172445873e5fcb.jar
    .jar