General

  • Target

    ae4f0f04f96be8249e1431d5cd61653e

  • Size

    1004KB

  • MD5

    ae4f0f04f96be8249e1431d5cd61653e

  • SHA1

    8def14f91f2d94607b990f041c0ce026a237b791

  • SHA256

    b612f8630f4a012aac9cb12c4aa132c3b74f5b77db3d198c02c1d17b69cc32ce

  • SHA512

    b50b1f15dc0f7a9a58aa11c2e1023b9625727e32b4c109e117c9633e4a331b0f4c32093eced91e5bce641ce7e0b8eb6cbeb07cdff3c200d3fb1a210ad24be8cd

  • SSDEEP

    12288:2//AH0CyrHLWuOmsdRtyncxQRhJJzhoqgH5sB4dxHGxoIF:2/oHHkIdRhQRh9B4dotF

Score
10/10

Malware Config

Extracted

Family

privateloader

C2

http://37.0.10.214/proxies.txt

http://37.0.10.244/server.txt

http://wfsdragon.ru/api/setStats.php

37.0.10.237

Signatures

  • Privateloader family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ae4f0f04f96be8249e1431d5cd61653e
    .exe windows:6 windows x86 arch:x86

    d829f266aa146de717eb87c227ada96a


    Headers

    Imports

    Sections