Overview

overview

10

Static

static

10

368-187-0x...ry.exe

windows7-x64

1

368-187-0x...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    368-187-0x0000000000400000-0x00000000007E4000-memory.dmp

  • Size

    3.9MB

  • MD5

    a34a84434b64b0c22de62e22391f9a6d

  • SHA1

    3e27efa2334280f1ef56aaef5f90a4b0a57c6bbc

  • SHA256

    fd7246ba0297d1db2768d6162fd7a889332579392437306a31d5f87991105f78

  • SHA512

    1a8a571ad16dcd0af9a6da0f25f65e9e7bb9bde24b927e2f921ba5349440f2306d7e5dd3036926e3d57a623ad8315cee9b6136c585574d929492eddf65bbdcfa

  • SSDEEP

    98304:u77Pmq33rE/JDLPWZADUGer7B6iY74M/lmlwXVZ:w+R/eZADUXR

Score
10/10
upxbitrat

Malware Config

Extracted

Family

bitrat

Version

1.38

C2

nicehash.at:6000

Attributes
  • communication_password

    005f16f264f006578c55237781f36898

  • install_dir

    JavaHelper

  • install_file

    Java.exe

  • tor_process

    tor

Signatures

  • Bitrat family
    bitrat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Files

  • 368-187-0x0000000000400000-0x00000000007E4000-memory.dmp
    .exe windows x86


    Headers

    Sections