General
-
Target
HEUR-Trojan-PSW.MSIL.Reline.gen-69b3211f85045038697487812406d2fcdb74ebe68df661f60796b4a61dc0c276.exe
-
Size
98KB
-
MD5
2c530deb5d4cd0f5a24739f9a422d952
-
SHA1
d4ad636c5896795fec5d26a64597b3a489d84626
-
SHA256
69b3211f85045038697487812406d2fcdb74ebe68df661f60796b4a61dc0c276
-
SHA512
af3dfc5b68c98d2539a3ece04a6c275272d81b767f9ebd77cc4d27a38f2d413847e2fcbd10697ba30bd5ebd89afe0fcfba585ce0159e9b83162214e8f02b787c
-
SSDEEP
1536:gG6ijoigpqFOLap5BqXo3I0igdcVVlmbfaxv0ujXyyedOC4EwEEg:+mEXo3IOdcos0ujyzdag
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
RZaqwrdCF
C2
redline54376876.duckdns.org:55123
Signatures
-
RedLine payload 1 IoCs
-
Redline family
Files
-
HEUR-Trojan-PSW.MSIL.Reline.gen-69b3211f85045038697487812406d2fcdb74ebe68df661f60796b4a61dc0c276.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections