Overview

overview

10

Static

static

10

decec0149d...b4.jar

windows7-x64

1

decec0149d...b4.jar

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    decec0149d94826aa21f3b2765e1c4b4

  • Size

    217KB

  • Sample

    240326-k8ktsahh4t

  • MD5

    decec0149d94826aa21f3b2765e1c4b4

  • SHA1

    30c4c507acecf7c4e0203d8540f21d699c2d6652

  • SHA256

    685549196c77e82e6273752a6fe522ee18da8076f0029ad8232c6e0d36853675

  • SHA512

    209bfcd63911cfa87ef2ae4a43482543b167083020316262aaa990ee1319b219262bbefaa7a2571887d6af9806d7abf8e8d87a7c8d3bb877141f1e7ba4bea0d3

  • SSDEEP

    6144:UNhoC6s6Gswd53gnGkNmM403pIFDSwYacvToLLaU2v6z3oOrGD6:86k/gRP3yFmwYVrOLaU2vNOr/

Score
10/10
strratdiscovery

Malware Config

Extracted

Family

strrat

C2

idgerowner.duckdns.org:1990

hostmicrosoft.duckdns.org:3636
Attributes
  • license_id

    T1PS-MJKQ-YUIX-ZBMX-CDGV

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    false

  • startup

    true

Targets

    • Target

      decec0149d94826aa21f3b2765e1c4b4

    • Size

      217KB

    • MD5

      decec0149d94826aa21f3b2765e1c4b4

    • SHA1

      30c4c507acecf7c4e0203d8540f21d699c2d6652

    • SHA256

      685549196c77e82e6273752a6fe522ee18da8076f0029ad8232c6e0d36853675

    • SHA512

      209bfcd63911cfa87ef2ae4a43482543b167083020316262aaa990ee1319b219262bbefaa7a2571887d6af9806d7abf8e8d87a7c8d3bb877141f1e7ba4bea0d3

    • SSDEEP

      6144:UNhoC6s6Gswd53gnGkNmM403pIFDSwYacvToLLaU2v6z3oOrGD6:86k/gRP3yFmwYVrOLaU2vNOr/

    Score
    7/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks