Overview

overview

10

Static

static

10

4696-141-0...ry.exe

windows7_x64

3

4696-141-0...ry.exe

windows10-2004_x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4696-141-0x000000007F620000-0x000000007F627000-memory.dmp

  • Size

    28KB

  • MD5

    21ec2cac8a3511f6a3d1ade20d5c1e38

  • SHA1

    43dbf185d1e05789f1cc704fcb79591ecb3bbaca

  • SHA256

    fb1d3d62de3f3547e33acb8ec37844e03510aa1f112f8892b186ac460177a776

  • SHA512

    4ffba22c2cffa1ad58a8a995edf1ac2e4217d92fe9ada9eb89c5e76115ec7a189f2173d35d21c18926dc7ebef554f9266f8dbba45fbb7a1e6213fa87abc622fa

  • SSDEEP

    384:w2erK9bDjI6HH7RPtL0iZTmijL4ySykclmuXJ3nD:T7bHI67RPtQe0yVkch

Score
10/10
build1colibri

Malware Config

Extracted

Family

colibri

Version

1.2.0

Botnet

Build1

C2

http://zpltcmgodhvvedxtfcygvbgjkvgvcguygytfigj.cc/gate.php

http://yugyuvyugguitgyuigtfyutdtoghghbbgyv.cx/gate.php

Signatures

Files

  • 4696-141-0x000000007F620000-0x000000007F627000-memory.dmp
    .exe windows x86


    Headers

    Sections