General

  • Target

    2888-221-0x0000000002BC0000-0x0000000002CF1000-memory.dmp

  • Size

    1.2MB

  • MD5

    1be2badcdb978a2f4b858b0c0a8e0d34

  • SHA1

    9f8b44bc21d7536d4e5ce95687716c0061359dd3

  • SHA256

    e3d24b381fc9738555455e3baac5c24e1a3ab19a639f3318ae62bfb9f3313a2a

  • SHA512

    57ef7549b5e9386183c8e743ec178d7e656b50a5be2317d2843aa934173ab44ba5dc10e7e04af9c3f8977af1eec1e6de6f98740bca048a401997c490ed14b1f1

  • SSDEEP

    24576:3C7CI9TZDEWk1wCy0zaG9cQAO1ftxmbfYQJZKBAX:7I99DEWVtQAOZmn0S

Score
10/10

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Signatures

  • Detect Fabookie payload 1 IoCs
  • Fabookie family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2888-221-0x0000000002BC0000-0x0000000002CF1000-memory.dmp
    .dll windows:6 windows x64


    Headers

    Sections