General
-
Target
0x000500000001db36-208.dat
-
Size
169KB
-
MD5
d33dca7ad0594bebe4b3461b4e0ba79c
-
SHA1
ad1700a0b1ed0f3d99771ee3edd24916afccb652
-
SHA256
f584e87f5032bcf37178f220c94d5dac86959afabf39a4c5d2fcf1a97bd2252b
-
SHA512
54cbdfcd5be451bc9fb2baf505a8ea5e26abc7c928bd5a778f6ac5340e4dea537414191ef546b303bb2e2e0cfdcb288d64377b2c573e44d7c74fb5a4506016dc
-
SSDEEP
1536:ph7B85JqlVZRGWazmrGokBiV4RL0tXNlcTGqVMbuo/ArK06dXgX83wYky8e8h4:pRwFpoH4h0t1qVExAW06dXgXQ8e8h4
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
maxi
C2
217.196.96.56:4138
Attributes
-
auth_value
6e90da232d4c2e35c1a36c250f5f8904
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x000500000001db36-208.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections