Overview

overview

10

Static

static

10

1784-54-0x...ry.exe

windows7-x64

10

1784-54-0x...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1784-54-0x0000000000400000-0x000000000043D000-memory.dmp

  • Size

    244KB

  • Sample

    221120-vawhqsed31

  • MD5

    589d4c265b0672eaf7979279c0c1a1e7

  • SHA1

    9940b3d0291086b57af86bf583229cc52bf44a91

  • SHA256

    c2f0d3581c8b2a009e075be9bcffc081507608f5f2663e3be2e6fbe2c4c0d93c

  • SHA512

    e66c180750cb5d97c698a84d75e416a8359dd55795a30e7a9827505655eaca16dc2d72ff7a92189720a0f287bf2e21917fc5d69ff50e32f9f004c1e6748b1795

  • SSDEEP

    3072:Um/E8k9ZjpIL+zNch12KbAwSaSOJSp8teb8EG:N/E8k91zz6/tA8EG

Score
10/10
arkeimarsstealerdefaultstealer

Malware Config

Extracted

Family

marsstealer

Botnet

Default

C2

data.topababa.com/gate.php

Targets

    • Target

      1784-54-0x0000000000400000-0x000000000043D000-memory.dmp

    • Size

      244KB

    • MD5

      589d4c265b0672eaf7979279c0c1a1e7

    • SHA1

      9940b3d0291086b57af86bf583229cc52bf44a91

    • SHA256

      c2f0d3581c8b2a009e075be9bcffc081507608f5f2663e3be2e6fbe2c4c0d93c

    • SHA512

      e66c180750cb5d97c698a84d75e416a8359dd55795a30e7a9827505655eaca16dc2d72ff7a92189720a0f287bf2e21917fc5d69ff50e32f9f004c1e6748b1795

    • SSDEEP

      3072:Um/E8k9ZjpIL+zNch12KbAwSaSOJSp8teb8EG:N/E8k91zz6/tA8EG

    Score
    10/10
    arkeistealer
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks