General

  • Target

    tmp

  • Size

    137KB

  • MD5

    0a793a6b9941c49675a47a2bc91cb420

  • SHA1

    ff051cc2d9cf081e863f5bb8c3d2449c28f12c7f

  • SHA256

    3bb977fda504647a2f21a19b67c3edf91ea1eb35166258164eb89b8ae1603c60

  • SHA512

    fd695f62ef32f79f3b4e5c57c68056b004355d5a16e6558bfb310f8ded03c837fe5f505f5a4f433a740fa0b980a71962571c3dd4ed86d95146a22f126850dc36

  • SSDEEP

    3072:zYO/ZMTFXn+IILj04nfwE64jTpWFByRPOhmSSU6s:zYMZMBXnbI8CfwwpvpOhI

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

Lege

C2

31.41.244.14:4694

Attributes
  • auth_value

    096090aaf3ba0872338140cec5689868

Signatures

  • RedLine payload 1 IoCs
  • Redline family

Files

  • tmp
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections