Overview

overview

10

Static

static

10

6d28fe68df...89.exe

windows7-x64

10

6d28fe68df...89.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    22c74adf03e49db1dfab9216566d4ed9.bin

  • Size

    14KB

  • MD5

    97d0c10c5c1f722fedabcca04c3bca68

  • SHA1

    d7614208950c9ec4e6117c0f76993ed5247c751c

  • SHA256

    ca6dd87070b78c8ab0988e784be2d13ca09af57ac92411d295ea9d00277fa892

  • SHA512

    40512579eeecb31bd0a6ec3f3ebe05df2a81f7edd07b834b92a8fc423982cb14f012698156c0510a4535d91639fdb284468b0d5138319a296fec7b8c402101f9

  • SSDEEP

    384:gF1S+VlF1UjBuFqDJGySqSkIKQYhy60jJ8G:g1UlXJVSLkUY4bjJ8G

Score
10/10
limerat

Malware Config

Extracted

Family

limerat

Attributes
  • aes_key

    4545

  • antivm

    false

  • c2_url

    https://pastebin.com/raw/rTiY1HLu

  • delay

    3

  • download_payload

    false

  • install

    false

  • install_name

    Wservices.exe

  • main_folder

    Temp

  • pin_spread

    false

  • sub_folder

    \

  • usb_spread

    false

Signatures

Files

  • 22c74adf03e49db1dfab9216566d4ed9.bin
    .zip

    Password: infected

  • 6d28fe68df58ab9121992fdcfba660bac50108c9ea9fd786a8dc3611b4f60289.exe
    .exe windows x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections