General
-
Target
a704635a31b878b7ccb0c3748be4c0a78050facb.jar.tar.gz
-
Size
202KB
-
MD5
df7cb27323f1646d763f4d1ff5a664da
-
SHA1
567237ed4b0506dd333bfa33164b97a0b0432a75
-
SHA256
3be0cdc4b221e128b5176c276018c0bfb942872bb8b5cc46b1e8c87c4b1e0f37
-
SHA512
c771b1ff425bc01d4d5f0c127d7ae58acd9aa9fd867698064c69bf7d062bea3761766a01b3a218108496890760fc0e93cd1eecc2616b91bbbc2b22c0c3ba6209
-
SSDEEP
6144:3xZUvzFZRVSeBJH9c6doW749rM87eCUa3kNvfC:BZUL7RVSIZeLrMF/FfC
Score
10/10
Malware Config
Extracted
Family
strrat
C2
tzitziklishop3.ddns.net:7800
103.151.123.225:7800
Attributes
-
license_id
DB1U-CVGT-7HUG-X0A0-GNWH
-
plugins_url
http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5
-
scheduled_task
true
-
secondary_startup
true
-
startup
true
Signatures
-
Strrat family
Files
-
a704635a31b878b7ccb0c3748be4c0a78050facb.jar.tar.gz
Password: infected_te_report
-
a704635a31b878b7ccb0c3748be4c0a78050facb.jar