General

  • Target

    xueSatPQMUFH.exe

  • Size

    138KB

  • MD5

    a771f2894d94322a49b0ce2e14493a3e

  • SHA1

    63cd63601410fe6be499a9102cbbd6c675e72f56

  • SHA256

    150c06bc4cba9064302fb96f2b3565f433b43847b6d59448ce15b9024e6c9b0a

  • SHA512

    ab75a88fbc2a8fd5320fdddb525af9a70c3553fa33b967545d4491a0ecd2e24869caeea49fdd7324d4ed666c42b8f5444c474056dddda0746af135bb97478765

  • SSDEEP

    3072:6bvA5mz7Bqh1v59Y08mAjs0Ltel+qOeJHlpV8b+Y/Yd:6bv4S7BqjjYHdrqkL/

Score
10/10

Malware Config

Extracted

Family

arrowrat

Botnet

AG35PW

C2

androidmedallo.duckdns.org:1338

Mutex

ZD2651

Signatures

Files

  • xueSatPQMUFH.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.