General
-
Target
1240-55-0x00000000003E0000-0x00000000004A0000-memory.dmp
-
Size
768KB
-
MD5
8dbad746f7443c39e47d6e0ccbeefd94
-
SHA1
434bd0d2ae25d563b4ccd1570ea33d07caa0cdc9
-
SHA256
9bf54f579fbd448a7bac0c456c05f6711c421b069332537f34f052a21c324687
-
SHA512
f755ae99ce3b27498515697c4ff9dc6986eaedeae1bd7226f3bae62fe2a7f3599baf9978478de3ddbd1e04561f8eef4985b3985a66b4e0bd951932887dc55a69
-
SSDEEP
12288:WURFW1h4TCxYVXxkZ1uiNP9uhHQKMv5qF/vL2oZAQXpo2EMBeH9j/axhgC8IrHyQ:rgKLh4UiNP9uFf4qF/v6uzpo1MBMEqIe
Score
10/10
Malware Config
Extracted
Family
cryptbot
C2
http://ywoswy22.top/gate.php
Attributes
-
payload_url
http://merlby02.top/baleen.dat
Signatures
-
Cryptbot family
Files
-
1240-55-0x00000000003E0000-0x00000000004A0000-memory.dmp