Overview

overview

10

Static

static

10

2044-336-0...ry.exe

windows7-x64

1

2044-336-0...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2044-336-0x0000000010410000-0x00000000107F4000-memory.dmp

  • Size

    3.9MB

  • MD5

    95f200755e4871ee4f1d3295effdc424

  • SHA1

    8da973999386113516c607805d3323cf5f4745e3

  • SHA256

    766ed3e1a6d4154c9e728e0b115ca8a2050acaabd1086ac19fade1fff4b11fb0

  • SHA512

    e7022417bea6c85b9ec1b00d01dfd20ea173f5869a531394c9f7dfbc76a17f956ca646cfdfc7103084c4fb3212e728afb9f0303fcdeec8688aa6b773fdac7e8f

  • SSDEEP

    98304:27RKCUqvxgjL4GhDZb62wGfnf6BoMvMU37:Ip2MGJl62wCyB

Score
10/10
upxbitrat

Malware Config

Extracted

Family

bitrat

Version

1.38

C2

davidmanne.casacam.net:2223

Attributes
  • communication_password

    b6c6e855edf908ec7c12ce8c8e628a5c

  • tor_process

    tor

Signatures

  • Bitrat family
    bitrat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Files

  • 2044-336-0x0000000010410000-0x00000000107F4000-memory.dmp
    .exe windows x86


    Headers

    Sections