General

  • Target

    svchost.exe

  • Size

    2.2MB

  • MD5

    f03dfb589547f36347100634d84b13eb

  • SHA1

    962791267c7ef9d478d67bddceab8a8132f0e44a

  • SHA256

    3bed0b372700d3421c5833e16585b22f7396d5552fd2ce166ade3f4c4236492b

  • SHA512

    fc47e9fd101e54b65ce1211efa3e48d08f2453fd5a506ab1f3587d2b4da802e243d8855f486eedf71ff3ca719da63244fe94a4896fd6002d5a587fec479cd1c1

  • SSDEEP

    24576:OOfsfKozBKHAhRh3KzPSA7R7Bt28SVSVlzyQOQZ9IEb68vL4R+2pYJeCYMXABtM:PBozBdhEV7q8bOQnIFWY+3Je0w0

Score
10/10

Malware Config

Extracted

Family

invictastealer

C2

https://discord.com/api/webhooks/1153051665830785074/TfKGEdu77soWYKJ87ZlhijDdnFz_2XtXrUoPZiPI5e8srz5MoLDEDE5tmcfqoA0wQpT4

Signatures

  • Invictastealer family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • svchost.exe
    .exe windows:6 windows x64

    2d5aa2bacb12ffd10966c83ca6563356


    Headers

    Imports

    Sections