Overview

overview

10

Static

static

10

1144-70-0x...ry.exe

windows7_x64

1

1144-70-0x...ry.exe

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1144-70-0x0000000000400000-0x00000000007E4000-memory.dmp

  • Size

    3.9MB

  • MD5

    43fa752cd6624239237e89148ae9892b

  • SHA1

    844eb1958deadeefb476348ab167ec9f7a347872

  • SHA256

    7e9a46c2d74e641310c79a0badde88d4d17623d5d45634a63ab09f511f7c8a47

  • SHA512

    63509b92cda4941899ce8dd2df23050cd3f1361c9765c828fa6052da5cfa10c8e12f8cd247043e7f519a921a42d7c3cbd0946c7d5b709c2053828e4020ff20a1

  • SSDEEP

    98304:q77Pmq33rE/JDLPWZADUGer7B6iY74M/kmlwXVZ:c+R/eZADUXR

Score
10/10
upxbitrat

Malware Config

Extracted

Family

bitrat

Version

1.38

C2

godfavor.duckdns.org:2349

Attributes
  • communication_password

    81dc9bdb52d04dc20036dbd8313ed055

  • tor_process

    tor

Signatures

  • Bitrat family
    bitrat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Files

  • 1144-70-0x0000000000400000-0x00000000007E4000-memory.dmp
    .exe windows x86


    Headers

    Sections