General
-
Target
1368-201-0x0000000002C50000-0x0000000003577000-memory.dmp
-
Size
9.2MB
-
MD5
ced342c48f026fe640ef3a3ae88494c4
-
SHA1
cd23251e0fa9dc4d1ba0422961b334dc54d4fcc7
-
SHA256
bfbfa8c2bd8d9be8c5ba5053d9b9df92d2cd0ecd94c2a1cd848e7ef02c94e48f
-
SHA512
94e23f258aa3d3cfa24b583c8e0c3bad7728e2918bd103b4a02c3f1eaf52a1a020543ef05779e4e142280ba4f384261531fe3ffff970c8b962b52c79233d347a
-
SSDEEP
98304:Tuy9SN8Ia5sCqsB2TavLmY9/XxMLvhhZytTVhg5iqV3:TuCSNNravLTxMLphwVhGd3
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
windows/single_exec
Signatures
-
Glupteba family
-
Glupteba payload 1 IoCs
resource yara_rule sample family_glupteba -
Metasploit family
Files
-
1368-201-0x0000000002C50000-0x0000000003577000-memory.dmp