Overview

overview

10

Static

static

10

6d3e348cfe...18.jar

windows7-x64

1

6d3e348cfe...18.jar

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18.jar

  • Size

    209KB

  • Sample

    240305-cwmhvacf85

  • MD5

    e5e273e7a2fdf5fc727fc9a54805dbf8

  • SHA1

    ea0a4d8f987500ebaee6c3f9b1c952c6ae1006f2

  • SHA256

    6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18

  • SHA512

    b6d698a385c98e25da230d189cb81709f9f435fc779579b727914d25d12ae49a7d17965c3f8047cb86273181d0ce82386b8910d6df68fd218c776b6a95184196

  • SSDEEP

    6144:7GF8hJ1HN/cgBS2czywRbaVo0MSmu2PzVmyKu:7GChHdrVcHWo0MSGpKu

Score
10/10
strratdiscovery

Malware Config

Extracted

Family

strrat

C2

tzitziklishop3.ddns.net:7800

103.114.104.158:7800
Attributes
  • license_id

    DB1U-CVGT-7HUG-X0A0-GNWH

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Targets

    • Target

      6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18.jar

    • Size

      209KB

    • MD5

      e5e273e7a2fdf5fc727fc9a54805dbf8

    • SHA1

      ea0a4d8f987500ebaee6c3f9b1c952c6ae1006f2

    • SHA256

      6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18

    • SHA512

      b6d698a385c98e25da230d189cb81709f9f435fc779579b727914d25d12ae49a7d17965c3f8047cb86273181d0ce82386b8910d6df68fd218c776b6a95184196

    • SSDEEP

      6144:7GF8hJ1HN/cgBS2czywRbaVo0MSmu2PzVmyKu:7GChHdrVcHWo0MSGpKu

    Score
    7/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks