General
-
Target
2460-11-0x0000000000250000-0x00000000002C1000-memory.dmp
-
Size
452KB
-
Sample
240108-x3c8zafhcj
-
MD5
6e11b6e970b4226feab460c7a4fe9eb5
-
SHA1
96c6901eb15f49a1ce368035b9bae306997cf248
-
SHA256
8c3fd51338527ca1943eb722e382611797b13d1ee26e9fe4ee5f78ca5942f0b6
-
SHA512
c39a493ab24889477f21831ecc5c97901a50f2cce0e0b2218085cad28b4c61196bfa6c9f587fb6b705631907543a61bc5a06d17d61155014a84b5cfe30695eb8
-
SSDEEP
12288:8AKWi8z8m4TTEBFrklcfhp6mywGy5MudjpTIlLY/6I6:8lB8z8m4TQTYlEWzwF1Edz
Score
10/10
Malware Config
Extracted
Family
amadey
Version
4.15
C2
http://rubyonthewal.xyz
Attributes
-
install_dir
a51d6af4de
-
install_file
augloopclient.exe
-
strings_key
a50fbc3107802624cf7eb9fd0961eb7a
-
url_paths
/g9jjjbnAdshZ/index.php
rc4.plain