Overview

overview

10

Static

static

10

TTPayment.jar

windows7-x64

1

TTPayment.jar

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    TTPayment.jar

  • Size

    267KB

  • MD5

    b4bc577b9b011c29d04f7e3797f5b4c0

  • SHA1

    dd5f810d906cd61a8ec78c28841a121fbaa88d6f

  • SHA256

    fe02be2dc318367898f962aa9c3415ff96d95526aa6f6efd72764a732f3b745c

  • SHA512

    12eba3aacb580eaf11dc9a9aec39ad5e926d053fc8e6fb6871153e22bfb2627628a64f3e931855ff772e63bb152862b7c59292345489085068e8e5c3263ecfa4

  • SSDEEP

    3072:fIMXATbZOaBKsPUVx4lboHQMg5CBklnIVSPxk/ISc6iTpoP6vBum4ggH9AoGa+:gAATbZiDPPqlISPW/IlFg6ZuZ+a+

Score
10/10
strrat

Malware Config

Extracted

Family

strrat

C2

195.211.190.213:1663

Attributes
  • license_id

    WYAA-QBJT-QQ16-FF21-N4O2

  • plugins_url

    http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5

  • scheduled_task

    true

  • secondary_startup

    true

  • startup

    true

Signatures

Files

  • TTPayment.jar
    .jar