General

  • Target

    2104-376-0x0000000003290000-0x00000000033C1000-memory.dmp

  • Size

    1.2MB

  • MD5

    252a9d5b8722c4f9214b62eaa60a20dd

  • SHA1

    7f5fea1c4fa7a827c63f059dc4e5534ae1ce0909

  • SHA256

    7a147b3b22f306381448fa40adf35f7743710f6c7e0d397e28bfe5a31115114a

  • SHA512

    00f8ffe13cbd9960014cd251f966259ecfa681d66865af4b652e7d2648f1185b1ccdc75cbbaff063551377f61cdad28059136edd88be262c05ef833c06af1b76

  • SSDEEP

    24576:3C7CI9TZDEWk1wCy0zaG9cQA81ftxmbfYQJZKfcJ:7I99DEWVtQA8Zmn0U

Score
10/10

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Signatures

  • Detect Fabookie payload 1 IoCs
  • Fabookie family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2104-376-0x0000000003290000-0x00000000033C1000-memory.dmp
    .dll windows:6 windows x64


    Headers

    Sections