Analysis

  • max time kernel
    150s
  • max time network
    155s
  • resource
    win7v191014

General

  • Target

    a038cf5f99d17df1e223aaf2f5f80b4b4a440a4e

  • Sample

    191018-7wl797zm62

  • SHA256

    ba6af8e68fc67d929a1567eef3a86c1ba481f4f55ee203a17b4e0ee81ec58f41

Score
N/A

Malware Config

Extracted

Family

ursnif

Botnet

1000

C2

http://weekends-estate.xyz

Attributes
  • dga_base_url

    constitution.org/usdeclar.txt

  • dga_crc

    1.320669898e+09

  • dga_season

    10

  • dga_tlds

    com

    ru

    org

  • dns_servers

    107.174.86.134

    107.175.127.22

rsa_pubkey.base64
serpent.plain

Signatures