General

  • Target

    2128-799-0x0000000003340000-0x0000000003471000-memory.dmp

  • Size

    1.2MB

  • MD5

    55c3fffb58fb598ce30dee280b64979a

  • SHA1

    2389ab4de42c2663194885412f50dd0987346133

  • SHA256

    0190b560a83fe4cc907aa6a63034f0d1b1fe4c57ae818e13a5c7d41ce8c1f335

  • SHA512

    446811739bd12b34dd3d9734acc9b7906f42d7845efa9de6a030412e77daf4152e7fb93f25415b8b7458f4b5a5382bdfa90bb9dee5b05e449821f85b1b366813

  • SSDEEP

    24576:3C7CI9TZDEWk1wCy0zaG9cQAj1ftxmbfYQJZKkPm:7I99DEWVtQAjZmn02

Score
10/10

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Signatures

  • Detect Fabookie payload 1 IoCs
  • Fabookie family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2128-799-0x0000000003340000-0x0000000003471000-memory.dmp
    .dll windows:6 windows x64


    Headers

    Sections