General

  • Target

    df4a5aa689d809d9bff916168c6cb6d61bc9fcade25efef073afa8e3dce0fc35

  • Size

    360KB

  • MD5

    544b6f28124205439a3010da11416743

  • SHA1

    0c1e192c9f7b5fee37d9555fb762cfd735e95e36

  • SHA256

    df4a5aa689d809d9bff916168c6cb6d61bc9fcade25efef073afa8e3dce0fc35

  • SHA512

    e15c23b708dec90a053613d63dacbd481bf9d5ba2a0545e459ef7e1ecbee4cf71263b22b7d9a36b98770cb1c3e9d7d713c898eb84344233447f89a6a2be24d31

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Signatures

  • RedLine payload 1 IoCs
  • Redline family

Files

  • df4a5aa689d809d9bff916168c6cb6d61bc9fcade25efef073afa8e3dce0fc35
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections