General
-
Target
1208-54-0x0000000180000000-0x0000000180005000-memory.dmp
-
Size
20KB
-
MD5
429e06c37198fbb6bab7ad505227060d
-
SHA1
5eef81fe74824c239533ef155dbcfd5e210a5033
-
SHA256
f7873fa274928fa4c03c4bcdac0366e97f450d0713c5684c51c1e82cb4a71a1c
-
SHA512
728020becadf1e3e65a0588e6f5630fe71ea2e067fabe8e8eaaf65df6c471315b69abda12d5b92219258ca86477968895dba7502b368996e74aeb9df92987188
-
SSDEEP
96:CAVCUOemFbOCsnsLoBTp9q3K7NEtsRaAyDI6QpfrGZz:CApOjr4sLETnq3Khgwy0n1m
Score
10/10
Malware Config
Extracted
Family
icedid
Botnet
1573268852
C2
peranistaer.top
gruvihabralo.nl
klareqvino.com
ultomductingbig.pro
Attributes
-
auth_var
16
-
url_path
/news/
Signatures
-
Icedid family
Files
-
1208-54-0x0000000180000000-0x0000000180005000-memory.dmp
Headers
Sections