strrat | 0a830444a8c87e98ea93f7e726ecf1aa22aa07799bf6d374edc2c5dfdde511f9 | Triage

Sharing

General

Target

0a830444a8c87e98ea93f7e726ecf1aa22aa07799bf6d374edc2c5dfdde511f9.jar
Size

64KB
Sample

240627-bdvwtswhnk
MD5

f27c858bd876a8b76099a27355ec5a8d
SHA1

ede4b114704aa305aa5d8a38efac970870c8830f
SHA256

0a830444a8c87e98ea93f7e726ecf1aa22aa07799bf6d374edc2c5dfdde511f9
SHA512

e570de2b4777aeea10394bef836454242408aea2fa953e5af52da3d0e200baa560d2a3732ebc69becff7a6acc1a9d2b4a1b5c430420a6cc47a9efe278500d721
SSDEEP

1536:4M/kpUvIa3EVYmmd2ittWJiQYciZbzHbWf9CRkgjaCpwrkd:cUvImEVrEOiQGZrkxEBwa

Score

10^/10

strrat discovery persistence stealer trojan

Malware Config

Targets

- Target
  
  0a830444a8c87e98ea93f7e726ecf1aa22aa07799bf6d374edc2c5dfdde511f9.jar
- Size
  
  64KB
- MD5
  
  f27c858bd876a8b76099a27355ec5a8d
- SHA1
  
  ede4b114704aa305aa5d8a38efac970870c8830f
- SHA256
  
  0a830444a8c87e98ea93f7e726ecf1aa22aa07799bf6d374edc2c5dfdde511f9
- SHA512
  
  e570de2b4777aeea10394bef836454242408aea2fa953e5af52da3d0e200baa560d2a3732ebc69becff7a6acc1a9d2b4a1b5c430420a6cc47a9efe278500d721
- SSDEEP
  
  1536:4M/kpUvIa3EVYmmd2ittWJiQYciZbzHbWf9CRkgjaCpwrkd:cUvImEVrEOiQGZrkxEBwa
Score

10^/10

strrat persistence stealer trojan discovery
- STRRAT
  STRRAT is a remote access tool than can steal credentials and log keystrokes.
  trojan stealer strrat
- Drops startup file
- Modifies file permissions
  discovery
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

strratpersistencestealertrojan

behavioral2

strratdiscoverypersistencestealertrojan