General

  • Target

    4352-139-0x0000000000400000-0x00000000007CE000-memory.dmp

  • Size

    3.8MB

  • MD5

    c3fe47c8cd69a6a7dc605c35cb0c0235

  • SHA1

    bcd3bea0c0236e36ae0681e71b709742708e1a09

  • SHA256

    da8c745ac80eafb5e671e58652e22d6df07957f950520ec51a7ffc2402201217

  • SHA512

    188c608dd287f0a410aafd1e8d84cebfd4af4dfd9bbf66d38ff05e511d15a0c81f71ba9a61c04d9ef3820abed85d2241b65625100c184fbe41288204dc9f35fe

  • SSDEEP

    98304:877Pmq33rE/JDLPWZADUGer7B6iY74M/GmlwXVZaFB:K+R/eZADUXR

Score
10/10

Malware Config

Extracted

Family

bitrat

Version

1.38

C2

lapoire3.hopto.org:1234

Attributes
  • communication_password

    e10adc3949ba59abbe56e057f20f883e

  • tor_process

    tor

Signatures

Files

  • 4352-139-0x0000000000400000-0x00000000007CE000-memory.dmp
    .exe windows x86


    Headers

    Sections