General
-
Target
4086221b3dd9ebfee8fa4cb285e268386dfbbe6e2ed5b8e3e31b618331acf051.zip
-
Size
280KB
-
MD5
11dd210e76bbab8d625fbab015936e05
-
SHA1
8dd3978bdb9a0bf00f5fdf30f586d51f014084bd
-
SHA256
4086221b3dd9ebfee8fa4cb285e268386dfbbe6e2ed5b8e3e31b618331acf051
-
SHA512
6a4577198a9f870809f534fd66d00ad5ed4f1b6d21cd9e43fdef7a6e2ed36f0203e2d0f09cc42bf5f5e440cff221a33b795ac22fc21808b872a52e6434bc55a8
-
SSDEEP
6144:71fOTRis/mSRgAoxaZ4iE0hqpEfV8wyu6zvzJPUtOCr6HH3WrDLQe:71mtisuKgxxBGuEfVD76zvz1pC+wQe
Score
10/10
Malware Config
Extracted
Family
xorddos
C2
http://aa.hostasa.org/config.rar
cdn.cloud2cdn.com:8080
Attributes
-
crc_polynomial
EDB88320
xor.plain
Signatures
-
XorDDoS payload 1 IoCs
-
Xorddos family
Files
-
4086221b3dd9ebfee8fa4cb285e268386dfbbe6e2ed5b8e3e31b618331acf051.zip
Password: infected
-
1e87a5dba16588bf91144de1b34a524bc70c39c88bca63f79dd95d3087253d72.elf