General

  • Target

    2360-19-0x0000000000400000-0x000000000043D000-memory.dmp

  • Size

    244KB

  • MD5

    7ceab8aef76d9166eeb85eaa32f03290

  • SHA1

    b91b715d08d913da2ec8cb86f6303d204b9e2762

  • SHA256

    1836970de0c6bca5d7bf18cf2178ea8b5e48db775edf7030c615509ec4a8442d

  • SHA512

    ae3651c0914669a90c68b14ffd15b3af4aed2bfd517f97b97cc752a678153a475d501b7103f3b1fb16e2f29439888022650ded2ade809a89d997a920f8bf10ca

  • SSDEEP

    3072:Um/E8k9ZjpIn+zNch12KbAwSaSCJSp8db8EG:N/E8k91rz6/tB8EG

Score
10/10

Malware Config

Extracted

Family

marsstealer

Botnet

Default

Signatures

  • Marsstealer family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2360-19-0x0000000000400000-0x000000000043D000-memory.dmp
    .exe windows:5 windows x86


    Headers

    Sections