General
-
Target
a405af40a581ee2f0408f195eac26dc9
-
Size
99KB
-
Sample
240225-rtspeaef2w
-
MD5
a405af40a581ee2f0408f195eac26dc9
-
SHA1
89070bac1eff692f089c431d6b95ad64095e77c9
-
SHA256
3a1f6872728b85b1777450badac363ede549d11d2144b5af35035c1e0da60de9
-
SHA512
8fcd879ecb732b1c953dfd3a73b5433357fa56f850f99b202504828e8f1b8b2a6b3ec5f69c062480b14530468b3b60695fc52b5c47682d9b653b78b68797b59c
-
SSDEEP
3072:qES7fGr+2adei9woomfn9FvfjxJOFlPDtH:qES4+2adbH7fjfIDtH
Behavioral task
behavioral1
Sample
a405af40a581ee2f0408f195eac26dc9.jar
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
a405af40a581ee2f0408f195eac26dc9.jar
Resource
win10v2004-20240221-en
Malware Config
Extracted
strrat
103.133.105.29:2664
127.0.0.1:2664
-
license_id
FDFL-86AF-249Z-UP6D-RTBW
-
plugins_url
http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5
-
scheduled_task
true
-
secondary_startup
true
-
startup
true
Targets
-
-
Target
a405af40a581ee2f0408f195eac26dc9
-
Size
99KB
-
MD5
a405af40a581ee2f0408f195eac26dc9
-
SHA1
89070bac1eff692f089c431d6b95ad64095e77c9
-
SHA256
3a1f6872728b85b1777450badac363ede549d11d2144b5af35035c1e0da60de9
-
SHA512
8fcd879ecb732b1c953dfd3a73b5433357fa56f850f99b202504828e8f1b8b2a6b3ec5f69c062480b14530468b3b60695fc52b5c47682d9b653b78b68797b59c
-
SSDEEP
3072:qES7fGr+2adei9woomfn9FvfjxJOFlPDtH:qES4+2adbH7fjfIDtH
Score7/10-
Modifies file permissions
-