General

  • Target

    dc2549ea80db41d3a62164bd57afef1504931d2ef4871e1ac1440c92a78faf8e

  • Size

    362KB

  • MD5

    3a425c15ef9eda875c7ef9a6e4d8a8c7

  • SHA1

    79e8b1275396249f412566145575d0c768e5a890

  • SHA256

    dc2549ea80db41d3a62164bd57afef1504931d2ef4871e1ac1440c92a78faf8e

  • SHA512

    ed2e6d2d8f2201c6de9a8faa0ae0d2386ffb69369f475b0926a325105443daba0af82bb1e572e2304560947b858d65cfcae82d397dae6936823732fb29f7174d

  • SSDEEP

    6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

0002

C2

13.72.81.58:13413

Attributes
  • auth_value

    866ce0ed8cfe2be77fb43a4912677698

Signatures

  • RedLine payload 1 IoCs
  • Redline family

Files

  • dc2549ea80db41d3a62164bd57afef1504931d2ef4871e1ac1440c92a78faf8e
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections