General

  • Target

    1492-55-0x0000000001DA0000-0x0000000001E41000-memory.dmp

  • Size

    644KB

  • MD5

    47d3be59c80a6da7126f57211894ff96

  • SHA1

    fb27439d6e83930193d150f4d79ae8262524d856

  • SHA256

    0d44437c9dc8cdfd3aa7d972d4f3f5324a4c18739e02c24ef13b96c08972fc52

  • SHA512

    3ea8cb1eaff2399c70469cc242642e1e1b4ca067ec3468e7457f0d82398c8c2ddaec4bc41b589d4b096458e166a05ac3e966083f14b9595808f75a2927d51814

  • SSDEEP

    12288:BN3Ohhf6F7ALFyrqnSgKBrnORaX1yfbf+sT3xJs:ymF7UFyr+SphDX1yfbTThJs

Malware Config

Signatures

  • Cobaltstrike family
  • FlawedGraceRat Loader 1 IoCs

    Detects FlawedGraceRat x64 loader in memory.

  • Flawedgracerat family

Files

  • 1492-55-0x0000000001DA0000-0x0000000001E41000-memory.dmp