General

  • Target

    a681393f417174f96a6f0814677b28d81884fb836b501de132eb0003e4782eac.exe

  • Size

    1.2MB

  • MD5

    ac6323cfb95cc48955949b4d2e7f91a5

  • SHA1

    525a7271bef3988185b4f2be7d797b2dfab8bcd0

  • SHA256

    a681393f417174f96a6f0814677b28d81884fb836b501de132eb0003e4782eac

  • SHA512

    34bc32f1e5c578a4b0e438311828d390ba6b657aafc018294a22db16697e5313693cce40996cfb31d55eb5f25e0713f835b1933620b1f23b0ea5732e7518e9df

  • SSDEEP

    24576:W2hVX3mzctl0cJQEcUKs9MjemJ5gx1wj7h0lhSMXl54Tud:9TX3yctl0E1Ks+egCx+jKp4T6

Score
10/10

Malware Config

Extracted

Family

meduza

C2

193.3.19.151

Attributes
  • anti_dbg

    true

  • anti_vm

    true

  • build_name

    enew

  • extensions

    .txt

  • grabber_max_size

    4.194304e+06

  • port

    15666

  • self_destruct

    false

Signatures

  • Meduza Stealer payload 1 IoCs
  • Meduza family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a681393f417174f96a6f0814677b28d81884fb836b501de132eb0003e4782eac.exe
    .exe windows:6 windows x64 arch:x64

    0095cfee1cdfcef936c4c086b6b4fe85


    Headers

    Imports

    Sections