Overview

overview

10

Static

static

10

f0b0869c7f...4f.dll

windows7-x64

1

f0b0869c7f...4f.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f0b0869c7fb582c4ca37b2530cf69e4f.virus

  • Size

    8.2MB

  • MD5

    f0b0869c7fb582c4ca37b2530cf69e4f

  • SHA1

    c99c474267aea1b7995e5f8e40b12d272c538604

  • SHA256

    102024428e70279167870e6002027df40a8060ba51f3e29cd9ec123f28a28ba9

  • SHA512

    681c23d179ea8a301c4af1fcb1dcfb39873bc2eb51336538b2636fa53f1efc9ee67840527b45ef0d9204f7835da6fbbbb4de5d6b3248f759537ac9ff80e96635

  • SSDEEP

    49152:CSFiqWJFY83N7qsH1Gsi2naMQTCBFYpNit4xkq7CqfaJDJka1E79y2zkl:GrJ1nVGOatTWCpN16A9DQl

Score
10/10
credmoduleminerbackdooramadeygandcrabxmrigmountlockersunburst

Malware Config

Signatures

  • Amadey family
    amadey
  • Detect Amadey credential stealer module 1 IoCs
    credmodule
  • Detected Mount Locker ransomware 1 IoCs
  • Detected SUNBURST backdoor 1 IoCs

    SUNBURST is a backdoor for the SolarWinds Orion platform with extensive capabilities.

    backdoor
  • GandCrab payload 1 IoCs
  • Gandcrab family
    gandcrab
  • Mountlocker family
    mountlocker
  • Sunburst family
    sunburst
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig

Files

  • f0b0869c7fb582c4ca37b2530cf69e4f.virus
    .dll windows x86


    Headers

    Sections