Overview

overview

10

Static

static

10

0x00070000...16.exe

windows7-x64

10

0x00070000...16.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x00070000000133d6-116.dat

  • Size

    168KB

  • MD5

    2bb52dbf95f5d509aed0c356b02e0319

  • SHA1

    2b0ecc733234bdd2dc98ee3c30230cbd9080c24a

  • SHA256

    0500937083bb7f951d62e3f8c7a25f5340fee9eea884df802aa42775ecc2b7c0

  • SHA512

    4978cc2c1c6b015d6c4095fbce95775e7e77991662cc360b71cc584c54b4127b3475e600521da0b031595aa08c30c04d33bddd0b425aa0b99c54c8820fb32553

  • SSDEEP

    1536:/9OLnP5teqhVZCGW5WwPwf8WTaj3zJJeunCxwSTGqVS5Wbu1RGwqHd384wYkp8eK:/8T3Ei8Wej9gWqVSYQRqHd388e8h3

Score
10/10
debroredline

Malware Config

Extracted

Family

redline

Botnet

debro

C2

185.161.248.75:4132

Attributes
  • auth_value

    18c2c191aebfde5d1787ec8d805a01a8

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x00070000000133d6-116.dat
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections