Microsoft Defender Antivirus detects and removes this threat.

StrRAT is a multi-functional Java-based remote access tool (RAT) that is known for its data stealing capabilities and fake ransomware-like behavior.

Attackers distribute StrRAT malware through malicious email campaigns. This RAT can steal browser credentials, log keystrokes and take remote control of infected systems. It also has a module that can download additional payloads onto the infected device, after receiving specific instructions from the attackers’ command-and-control (C2) server. This RAT poses itself as a ransomware, and it has an encryption/decryption module that appends a .crimson extension to the files without actually encrypting them.