General
-
Target
904-122-0x0000000003810000-0x000000000396C000-memory.dmp
-
Size
1.4MB
-
MD5
a84f1889711d86eb6898032b169c3c76
-
SHA1
de3f2430857f47dbdddc32186c6463ee31157b8a
-
SHA256
dccd871acb578ef360fc8e76e8462f1a8c5dfc1fa3f06dd45bcd5ee1e60cd129
-
SHA512
dd0c6ad32bbb4c87325b2e5fb97edb59b4a556d21c1ee741bca84032daa7cfcb265ed7c6af607cfc991bc9cd46b2a8ae8cda88619b70e9269d55e01653e7eb93
-
SSDEEP
3072:tz535UDxyziSgLKA76nTY/au2spVi15GQlbGRADkC94kmOO6LSPLGTKdzQMzqd2S:r3h+4TYytsziDzsGZ4MO6Vwzzc3U9E
Score
10/10
Malware Config
Extracted
Family
vidar
Version
55.1
Botnet
1670
C2
http://94.131.109.112:80
http://94.131.109.113:80
Attributes
-
profile_id
1670
Signatures
-
Vidar family
Files
-
904-122-0x0000000003810000-0x000000000396C000-memory.dmp
Headers
Sections