General
-
Target
HEUR-Trojan-PSW.MSIL.Reline.gen-9e1e66a0c455576a959cd68c9af142ee592eadeb137711b12b396d6248cfc30f.exe
-
Size
95KB
-
MD5
16e8c00d4d82c992ea4d70c435fad32f
-
SHA1
c8035db0ec26c454485170afde383dcc4b9167c6
-
SHA256
9e1e66a0c455576a959cd68c9af142ee592eadeb137711b12b396d6248cfc30f
-
SHA512
4aad79ebc675960a03b2d32863f2e712e219adb8d7c82d4c815e5e2acda137307c26d8af84fe5aafa32476908f5fb8a229d5098d3656a71e24c4a3532fd112ba
-
SSDEEP
1536:Nqs4iqeHlbG6jejoigIH43Ywzi0Zb78ivombfexv0ujXyyed2Q3teulgS6pIl:7/pVYH+zi0ZbYe1g0ujyzd+I
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
cheat
C2
fredden12.duckdns.org:40964
Signatures
-
RedLine payload 1 IoCs
-
Redline family
Files
-
HEUR-Trojan-PSW.MSIL.Reline.gen-9e1e66a0c455576a959cd68c9af142ee592eadeb137711b12b396d6248cfc30f.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections