nullmixer | 1844-119-0x0000000000400000-0x000000000051E000-memory[.]dmp

Sharing

Copy URL

Twitter E-mail

General

Target

1844-119-0x0000000000400000-0x000000000051E000-memory.dmp
Size

1.1MB
MD5

d789bf806e751d74e5db5b662dcec523
SHA1

d60fa00637ac5f64697e74813e9ce7c1d38f9f32
SHA256

6bb2e5e1830c89f18e6d4a40027444fc9014d99403e27bc7f03af08f858f041f
SHA512

55f2db7af317c3acaf856cf96f6b41d08688f07403301e5b8a7eb63052d0bb07498d0aa19353eba7874d02d0d96a563df337354ecf28b3fef7f55c88ffe1d01f
SSDEEP

12288:3kxdZiHLn9h+IlEYkY6+u8X/+hNRtL15KiDY4Qb2gl4ZJHZeZwZ6m5JgH5nyrfjM:vNlEYkYb5X/+hh1Ii7QbUJgH2

Score

10^/10

nullmixer

Malware Config

Extracted

Family

nullmixer

http://lotzini.xyz/

Signatures

Nullmixer family
nullmixer

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1844-119-0x0000000000400000-0x000000000051E000-memory.dmp

Files

1844-119-0x0000000000400000-0x000000000051E000-memory.dmp
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 173KB - Virtual size: 632KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 34KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/14
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/29
Size: 33KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/41
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/55
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/67
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/80
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/91
Size: 11KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/102
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Extracted

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 173KB - Virtual size: 632KB

.data Size: 512B - Virtual size: 8KB

.rdata Size: 11KB - Virtual size: 44KB

/4 Size: 34KB - Virtual size: 232KB

.bss Size: - Virtual size: 3KB

.idata Size: 2KB - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

/14 Size: 512B - Virtual size: 4KB

/29 Size: 33KB - Virtual size: 100KB

/41 Size: 1KB - Virtual size: 8KB

/55 Size: 9KB - Virtual size: 24KB

/67 Size: 512B - Virtual size: 4KB

/80 Size: 512B - Virtual size: 4KB

/91 Size: 11KB - Virtual size: 44KB

/102 Size: 1KB - Virtual size: 8KB

.aspack Size: 4KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 173KB - Virtual size: 632KB

.data
Size: 512B - Virtual size: 8KB

.rdata
Size: 11KB - Virtual size: 44KB

/4
Size: 34KB - Virtual size: 232KB

.bss
Size: - Virtual size: 3KB

.idata
Size: 2KB - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

/14
Size: 512B - Virtual size: 4KB

/29
Size: 33KB - Virtual size: 100KB

/41
Size: 1KB - Virtual size: 8KB

/55
Size: 9KB - Virtual size: 24KB

/67
Size: 512B - Virtual size: 4KB

/80
Size: 512B - Virtual size: 4KB

/91
Size: 11KB - Virtual size: 44KB

/102
Size: 1KB - Virtual size: 8KB

.aspack
Size: 4KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB