Overview

overview

10

Static

static

10

fa454076cf...15.jar

windows7-x64

1

fa454076cf...15.jar

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c00501fc6a943e9212f1d0fd93235daa.bin

  • Size

    83KB

  • MD5

    1fb73cc73c5ff5fac405e132cb7cfe8b

  • SHA1

    aa6d2f0d17e7a89a9833c190facd4d2f6800c2ca

  • SHA256

    8e16501f537f89644518cd23b4d1b3ca8c78419d82745f35c2914da0a6dc8128

  • SHA512

    f89505dd73313c96faa43603a866aed624bd8072815e33b4594d635d6275a543eafabbdfc57b36839212629bbfe823125e988bdc4ea8ec8500eec671412ae453

  • SSDEEP

    1536:gfAE7SloWVZ6m5eolFdZR4Ewe7xjIPQOQDwuwOvmGk6jT925qCB6r:qgZ6mUIdsE9xjI4lDdwjEnIoCBg

Score
10/10
strrat

Malware Config

Extracted

Family

strrat

C2

194.5.98.243:7123

194.5.98.243:7234
Attributes
  • license_id

    FREF-6ILG-J2DN-PT5K-AYC2

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Signatures

Files

  • c00501fc6a943e9212f1d0fd93235daa.bin
    .zip

    Password: infected

  • fa454076cf36fe6868d54215ebb345cd9d6c8423fa9bd9f0bd56df9074915215.zip
    .jar