Overview

overview

10

Static

static

10

1140-1201-...ry.exe

windows7-x64

1

1140-1201-...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1140-1201-0x0000000000400000-0x0000000000407000-memory.dmp

  • Size

    28KB

  • MD5

    afcc1dd717f59a091a006c16440512dd

  • SHA1

    040422db08de199df928e8b502166d8b66ddc893

  • SHA256

    1ac9ebfb7f7df727c39eceedb07d504cba66906d283b649dfd356990bbeb6394

  • SHA512

    0df5b855da101bcf9b46022fc24aab204d6ef546033e310d05975ef53fa53ea18033aa4c9b4ae8c955ab2aa6a11f6372205862a4005989e7f615f5d720a98f4e

  • SSDEEP

    384:0ZKGmESEH3s5jNIFaFASY2dgYebP57YebdG:0Zmdq3+jNSaSEm

Score
10/10
systembc

Malware Config

Extracted

Family

systembc

C2

wodresomdaymomentum.org

Attributes
  • dns

    5.132.191.104

Signatures

  • Systembc family
    systembc
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1140-1201-0x0000000000400000-0x0000000000407000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections