General

  • Target

    50a3280dc04e49d606eac471f8179541638cbe3ea189caa6ecf332890ca2d72d

  • Size

    51KB

  • MD5

    4dfff23604fea7bcd4cd6b8229eabb68

  • SHA1

    4796788c2cd0076f9fabb5ca9a1872bcc66c4fcf

  • SHA256

    50a3280dc04e49d606eac471f8179541638cbe3ea189caa6ecf332890ca2d72d

  • SHA512

    fe29651f13ae2b3b0bdaa5fd1401cdd9a3edb373e870d99960929afa9fdbf489db2a2e22a05d44ec024ba8d8cd9907f6d678b4cee56253ff1ceedc53bbe61cb2

  • SSDEEP

    768:l/sRQSdkZ9dZqX+n7AuQ02Ur4T38LrvehT4PHcoua5OM6K6SohE+4JBSX1fcGU1g:eezPcuqUr0sLrG1Z96PohE+4Bu1VR

Score
10/10

Malware Config

Extracted

Family

limerat

Attributes
  • aes_key

    Fanhacks

  • antivm

    true

  • c2_url

    https://pastebin.com/raw/ETQfrbLD

  • delay

    3

  • download_payload

    false

  • install

    false

  • install_name

    Windows Remon.exe

  • main_folder

    Temp

  • pin_spread

    true

  • sub_folder

    \

  • usb_spread

    true

Signatures

Files

  • 50a3280dc04e49d606eac471f8179541638cbe3ea189caa6ecf332890ca2d72d
    .rar
  • Cheats.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections