Overview

overview

10

Static

static

10

1160-57-0x...ry.exe

windows7-x64

3

1160-57-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1160-57-0x0000000000400000-0x0000000000560000-memory.dmp

  • Size

    1.4MB

  • Sample

    230213-q9ebaadf28

  • MD5

    2de5c09aaccfd0a8d405fcc6a535ce9c

  • SHA1

    f42a454cde6297b1901b6cf89a2b2312d17cba82

  • SHA256

    8bee5499256001c7efbdd2735976326599723541534ce318508fcb08c627ed3e

  • SHA512

    13765a06c64249d5324cb41a5a761796a86fa32b4868150abf6ef40b17db66a5e52b0c7e4d3864f7e0607d808e337ce9909e7ed675c02f35cebd4be58890e5a5

  • SSDEEP

    3072:KZ71ehH+KPo1QDLBKSWPa5jnBYP/P70zU+dTWJbIOeHEbV:K/IeduLASrBYT0zUHJcOeHE

Score
10/10
colibriuniques

Malware Config

Extracted

Family

colibri

Version

1.4.0

Botnet

Uniques

C2

http://194.4.49.243/gate.php

rc4.plain

Targets

    • Target

      1160-57-0x0000000000400000-0x0000000000560000-memory.dmp

    • Size

      1.4MB

    • MD5

      2de5c09aaccfd0a8d405fcc6a535ce9c

    • SHA1

      f42a454cde6297b1901b6cf89a2b2312d17cba82

    • SHA256

      8bee5499256001c7efbdd2735976326599723541534ce318508fcb08c627ed3e

    • SHA512

      13765a06c64249d5324cb41a5a761796a86fa32b4868150abf6ef40b17db66a5e52b0c7e4d3864f7e0607d808e337ce9909e7ed675c02f35cebd4be58890e5a5

    • SSDEEP

      3072:KZ71ehH+KPo1QDLBKSWPa5jnBYP/P70zU+dTWJbIOeHEbV:K/IeduLASrBYT0zUHJcOeHE

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks