General
-
Target
75ca8e8dcf4e6d4d4e641c4a968daa19_JaffaCakes118
-
Size
184KB
-
Sample
240401-vs48laac8w
-
MD5
75ca8e8dcf4e6d4d4e641c4a968daa19
-
SHA1
1b5f0941d329fc14f56451c0e1c94d68fcec17ec
-
SHA256
80658759ad67edd23bc4cbfaba5e2add421ff794772ddffe24174b6f25904087
-
SHA512
dcb0d44d370ecc9acb57b97eb63c473028277c9621e11b646a2d935699b43e3ea830feed4128ce1e583adbf433f3af595ea6533525ba03731bbb942d989390b6
-
SSDEEP
3072:h72/CkY3miW9kLPBcanX3z8MlMDrGNZ1Ii0M0GVarNWtOQDaj19JYZ4+x0oe1:h72akOc/KZ1N0M0+c82tq440oe1
Behavioral task
behavioral1
Sample
75ca8e8dcf4e6d4d4e641c4a968daa19_JaffaCakes118.jar
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
75ca8e8dcf4e6d4d4e641c4a968daa19_JaffaCakes118.jar
Resource
win10v2004-20240226-en
Malware Config
Extracted
strrat
31.210.20.102:2664
127.0.0.1:2664
-
license_id
FDFL-86AF-249Z-UP6D-RTBW
-
plugins_url
http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5
-
scheduled_task
true
-
secondary_startup
true
-
startup
true
Targets
-
-
Target
75ca8e8dcf4e6d4d4e641c4a968daa19_JaffaCakes118
-
Size
184KB
-
MD5
75ca8e8dcf4e6d4d4e641c4a968daa19
-
SHA1
1b5f0941d329fc14f56451c0e1c94d68fcec17ec
-
SHA256
80658759ad67edd23bc4cbfaba5e2add421ff794772ddffe24174b6f25904087
-
SHA512
dcb0d44d370ecc9acb57b97eb63c473028277c9621e11b646a2d935699b43e3ea830feed4128ce1e583adbf433f3af595ea6533525ba03731bbb942d989390b6
-
SSDEEP
3072:h72/CkY3miW9kLPBcanX3z8MlMDrGNZ1Ii0M0GVarNWtOQDaj19JYZ4+x0oe1:h72akOc/KZ1N0M0+c82tq440oe1
Score7/10-
Modifies file permissions
-