General

  • Target

    2904-309-0x0000000000370000-0x00000000005BA000-memory.dmp

  • Size

    2.3MB

  • MD5

    25f601a947b6316a36ac97cdc6a64120

  • SHA1

    abf02dda142c721bab28f7add69f5737a1a305e9

  • SHA256

    b1ed4786f8819576606625293a7194d4cbac2fae7b1cfa2d8b4cee10808eabba

  • SHA512

    b60d2f4072e65b1a7f290f4fcd1cc57d0508a523df832154d5719e100b4d77108943e6b6feb99b1f432c7233f9f265d7671fe6709ad30e01c75e93bf1ceff924

  • SSDEEP

    49152:WDfD9pgRLTOToQ41EKMZdY9L0OiBBM84yv8PYm/c7YrFUJUUUUUUU:WDfD9pgRLTOTMbMZ2UJUUUUUUU

Score
10/10

Malware Config

Signatures

  • Asyncrat family
  • StormKitty payload 1 IoCs
  • Stormkitty family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2904-309-0x0000000000370000-0x00000000005BA000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections