General
-
Target
6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18.jar
-
Size
209KB
-
Sample
240305-cwmhvacf85
-
MD5
e5e273e7a2fdf5fc727fc9a54805dbf8
-
SHA1
ea0a4d8f987500ebaee6c3f9b1c952c6ae1006f2
-
SHA256
6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18
-
SHA512
b6d698a385c98e25da230d189cb81709f9f435fc779579b727914d25d12ae49a7d17965c3f8047cb86273181d0ce82386b8910d6df68fd218c776b6a95184196
-
SSDEEP
6144:7GF8hJ1HN/cgBS2czywRbaVo0MSmu2PzVmyKu:7GChHdrVcHWo0MSGpKu
Behavioral task
behavioral1
Sample
6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18.jar
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18.jar
Resource
win10v2004-20240226-en
Malware Config
Extracted
strrat
tzitziklishop3.ddns.net:7800
103.114.104.158:7800
-
license_id
DB1U-CVGT-7HUG-X0A0-GNWH
-
plugins_url
http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5
-
scheduled_task
true
-
secondary_startup
true
-
startup
true
Targets
-
-
Target
6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18.jar
-
Size
209KB
-
MD5
e5e273e7a2fdf5fc727fc9a54805dbf8
-
SHA1
ea0a4d8f987500ebaee6c3f9b1c952c6ae1006f2
-
SHA256
6d3e348cfe718e27a0af78d15ff32648890e51442a7f614c2463e50a0116eb18
-
SHA512
b6d698a385c98e25da230d189cb81709f9f435fc779579b727914d25d12ae49a7d17965c3f8047cb86273181d0ce82386b8910d6df68fd218c776b6a95184196
-
SSDEEP
6144:7GF8hJ1HN/cgBS2czywRbaVo0MSmu2PzVmyKu:7GChHdrVcHWo0MSGpKu
Score7/10-
Modifies file permissions
-