General

  • Target

    98ceabad0a987e7dda004d388ec4f6c1bd54d8de5a06d2192cf47bbb7ace8003.zip

  • Size

    42KB

  • Sample

    230328-ktsk3sbg4v

  • MD5

    52afc80cad12b7f148538fd733663f27

  • SHA1

    60b07f1557c235fca7402d5492d4b22009d1d9e1

  • SHA256

    206fc46b38953ac40dba9bd1c3ab49ad5822cc7e7372a7d3c5f7aeee6c665986

  • SHA512

    e63110812aff0d7037abfbd1ceb24f9e23e7b1bf475d276ee639a7c7a47eaa0e5f5f18660a799eeb4d89d6703e8d9159e7acc6772b8c2f893cabfb6f1534c188

  • SSDEEP

    768:xMRc1BihQfkyI3SI6iVslgQrOQ9RxSveILK2rOsHKnZCn3LTFN+pkcYXqnjue:AIM48N6iVsKQrOyxSI2rFKZYLTFgYXGj

Malware Config

Extracted

Family

redline

Botnet

Usa1

C2

vahodedian.xyz:80

Targets

    • Target

      98ceabad0a987e7dda004d388ec4f6c1bd54d8de5a06d2192cf47bbb7ace8003

    • Size

      96KB

    • MD5

      e69997f3aa779ef713ddd487f320756d

    • SHA1

      a493d610e9ab9c13cc9401482aca7c3960621b1e

    • SHA256

      98ceabad0a987e7dda004d388ec4f6c1bd54d8de5a06d2192cf47bbb7ace8003

    • SHA512

      ad79a2f74806814514e2c1b8bc856529651e7e9f7c491f20a419efb7dd60a6ef697f1cb0752c707674c951cdcd2929db4cac35af7d93a6bc42d0762e0fffb281

    • SSDEEP

      1536:THB+zRmEOhwCUY/rXWoinHDHhKyru4ogWPPxOSmbf9Bo3uHTyyHddYRk33jtxbIC:TwzRmEnCUuzWoinHDAyru4ogmxOX1Uup

    Score
    5/10

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Tasks